VYPR

Maven package

com.gradle.plugin-publish/com.gradle.plugin-publish.gradle.plugin

pkg:maven/com.gradle.plugin-publish/com.gradle.plugin-publish.gradle.plugin

Vulnerabilities (1)

  • CVE-2020-7599Mar 30, 2020
    affected < 0.11.0fixed 0.11.0

    All versions of com.gradle.plugin-publish before 0.11.0 are vulnerable to Insertion of Sensitive Information into Log File. When a plugin author publishes a Gradle plugin while running Gradle with the --info log level flag, the Gradle Logger logs an AWS pre-signed URL. If this bu