⚠️ CRITICAL: NuGetGallery improper input validation (CVE-2026-39399, CVSS 9.6) allows crafted .nuspec files to trigger RCE & arbitrary blob writes. Update to commit 0e80f87628349207cdcaf55358491f8a6f1ca276. Details: https://radar.offseq.com/threat/cve-2026-39399-cwe-20-improper-input-validation-in-f5d85126 #OffSeq #NuGet #Vuln #infosec