An open project to list all publicly known cloud vulnerabilities and CSP security issues
Creative Commons Attribution 4.0 International
303
stars
61
forks
source link
[Contribution] Azure CLI credential leakage #254
Open
korniko98 opened 9 months ago
Summary (give a brief description of the issue)
Azure Command-Line Interface (CLI) could expose sensitive information, including credentials, through GitHub Actions logs.
References (provide links to blogposts, etc.)
https://www.paloaltonetworks.com/blog/prisma-cloud/secrets-leakage-user-error-azure-cli/ https://msrc.microsoft.com/blog/2023/11/microsoft-guidance-regarding-credentials-leaked-to-github-actions-logs-through-azure-cli/