VYPR

GitHub Actions package

hashicorp/vault-action

pkg:github/hashicorp/vault-action

Vulnerabilities (1)

  • CVE-2021-32074May 7, 2021
    affected < 2.2.0fixed 2.2.0

    HashiCorp vault-action (aka Vault GitHub Action) before 2.2.0 allows attackers to obtain sensitive information from log files because a multi-line secret was not correctly registered with GitHub Actions for log masking.