VYPR

Maven package

com.gradle.publish/plugin-publish-plugin

pkg:maven/com.gradle.publish/plugin-publish-plugin

Vulnerabilities (1)

  • CVE-2020-7599Mar 30, 2020
    affected < 0.11.0fixed 0.11.0

    All versions of com.gradle.plugin-publish before 0.11.0 are vulnerable to Insertion of Sensitive Information into Log File. When a plugin author publishes a Gradle plugin while running Gradle with the --info log level flag, the Gradle Logger logs an AWS pre-signed URL. If this bu