Security Issue in Commit 4533ba86 – Exposure of Sensitive Information #146850
Replies: 1 comment
-
💬 Your Product Feedback Has Been Submitted 🎉 Thank you for taking the time to share your insights with us! Your feedback is invaluable as we build a better GitHub experience for all our users. Here's what you can expect moving forward ⏩
Where to look to see what's shipping 👀
What you can do in the meantime 💻
As a member of the GitHub community, your participation is essential. While we can't promise that every suggestion will be implemented, we want to emphasize that your feedback is instrumental in guiding our decisions and priorities. Thank you once again for your contribution to making GitHub even better! We're grateful for your ongoing support and collaboration in shaping the future of our platform. ⭐ |
Beta Was this translation helpful? Give feedback.
-
Select Topic Area
Bug
Body
Hi Team,
During a review of commit 4533ba86a8f064f4384fd72586a73ec6b0a6519e in mqtt.py, I identified that sensitive credentials are printed to the console via the _on_call_id method. This could lead to unauthorized access if logs are exposed.
Suggested Actions:
Immediate: Remove or sanitize the print statement to prevent credential exposure.
Review: Ensure no other sensitive data is being logged.
Best regards,
Beatriz Costa
Jr. Cybersecurity Researcher
Beta Was this translation helpful? Give feedback.
All reactions