When starting the misp-docker container, the environment variable MYSQL_PASSWORD is logged in cleartext.
I did not set any debug-flags as far as I am aware and this is the only environment variable that is logged.
Clearly, it is not a good practice to log secrets in cleartext, so hopefully this is fixed quickly.
When starting the misp-docker container, the environment variable MYSQL_PASSWORD is logged in cleartext. I did not set any debug-flags as far as I am aware and this is the only environment variable that is logged.
Clearly, it is not a good practice to log secrets in cleartext, so hopefully this is fixed quickly.