Security vulnerability affects the karma-fips package. This issue is resolved in later releases. See references for vulnerability details.