漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
tfplan2md has Sensitive Value Exposure in Generated Reports
Vulnerability Description
tfplan2md is software for converting Terraform plan JSON files into human-readable Markdown reports. Prior to version 1.26.1, a bug in tfplan2md affected several distinct rendering paths: AzApi resource body properties, AzureDevOps variable groups, Scriban template context variables, and hierarchical sensitivity detection. This caused reports to render values that should have been masked as "(sensitive)" instead. This issue is fixed in v1.26.1. No known workarounds are available.
CVSS Information
N/A
Vulnerability Type
敏感数据的不恰当跨边界移除
Vulnerability Title
tfplan2md 安全漏洞
Vulnerability Description
tfplan2md是Mathias Raacke个人开发者的一个Markdown文档生成工具。 tfplan2md 1.26.1之前版本存在安全漏洞,该漏洞源于多个渲染路径存在缺陷,可能导致敏感值泄露。
CVSS Information
N/A
Vulnerability Type
N/A