buildx allows a possible credential leakage to telemetry endpoint in github.com/docker/buildx
{ "url": "https://pkg.go.dev/vuln/GO-2025-3527", "review_status": "UNREVIEWED" }