Kiota abstractions RedirectHandler leaks Cookie/Proxy-Authorization headers on cross-host redirect in github.com/microsoft/kiota-http-go
{ "url": "https://pkg.go.dev/vuln/GO-2026-5224", "review_status": "UNREVIEWED" }
"https://vuln.go.dev/ID/GO-2026-5224.json"