CVE-2026-32737

Name of the Vulnerable Software and Affected Versions Romeo versions prior to 0.2.1

Description Romeo is a tool designed to measure code coverage for Go applications within GitHub Actions. A misconfigured NetworkPolicy allows a malicious actor to move from the "hardened" namespace to any other Pod, breaking the expected security-by-default behavior and potentially enabling lateral movement. The issue stems from a mis-written NetworkPolicy.

Recommendations Update to version 0.2.1 or later. If updates are not possible, manually delete the inter-ns NetworkPolicy. Delete any failing network policy prefixed by inter-ns- in the target namespace.