EthStaker Deposit CLI

Findings · 7

1. 1 Use of unpinned third-party Docker image and actions on workflows Medium
2. 2 Use of GPG for release signing and verification Informational
3. 3 Sensitive files are incorrectly assigned permissions and ownership High
4. 4 Error-prone path handling Informational
5. 5 Emphasize critical warning regarding clipboard clearing Medium
6. 6 Encryption function random parameters are set at program init High
7. 7 Terminal buer is not cleared on iTerm2 Low

Findings extracted from the published report PDF. See the full report below for details and remediation.