top | item 43370388 (no title) Everdred2dx | 11 months ago How does this siphon the secrets away? It looks like it just dumps them out to stdout and stops there. discuss order hn newest varunsharma07|11 months ago Yes, just prints to the build log, so the risk is higher for public repos. Lot of public repos have creds printed in their build logs due to this compromised action.
varunsharma07|11 months ago Yes, just prints to the build log, so the risk is higher for public repos. Lot of public repos have creds printed in their build logs due to this compromised action.
varunsharma07|11 months ago