Open GAEAlimited opened 5 days ago
Updates
Comments HashiCorp vault-action (aka Vault GitHub Action) before 2.2.0 allows attackers to obtain sensitive information from log files because a multi-line secret was not correctly registered with GitHub Actions for log masking.
Hi @GAEAlimited, the pull request seems to be missing the changes you want to make. Could you clarify what you are asking for?
Updates
Comments HashiCorp vault-action (aka Vault GitHub Action) before 2.2.0 allows attackers to obtain sensitive information from log files because a multi-line secret was not correctly registered with GitHub Actions for log masking.