Lucene search
Veracode Vulnerability DatabaseVERACODE:47058HistoryMay 20, 2024 - 10:47 a.m.
Sensitive Information Disclosure
2024-05-2010:47:12
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
2
github vulnerability environment disclosure build logs info level.
6.6 Medium
AI Score
Confidence
Low
github.com/goreleaser/goreleaser is vulnerable to Sensitive Information Disclosure. The vulnerability is due to the change in log output level from DEBUG to INFO, which could allow an attacker with access to the build logs to view sensitive environment information when the go build output is non-empty.
6.6 Medium
AI Score
Confidence
Low