Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
tfplan2md has Sensitive Value Exposure in Generated Reports
Vulnerability Description
tfplan2md is software for converting Terraform plan JSON files into human-readable Markdown reports. Prior to version 1.26.1, a bug in tfplan2md affected several distinct rendering paths: AzApi resource body properties, AzureDevOps variable groups, Scriban template context variables, and hierarchical sensitivity detection. This caused reports to render values that should have been masked as "(sensitive)" instead. This issue is fixed in v1.26.1. No known workarounds are available.
CVSS Information
N/A
Vulnerability Type
敏感数据的不恰当跨边界移除
Vulnerability Title
tfplan2md 安全漏洞
Vulnerability Description
tfplan2md是Mathias Raacke个人开发者的一个Markdown文档生成工具。 tfplan2md 1.26.1之前版本存在安全漏洞,该漏洞源于多个渲染路径存在缺陷,可能导致敏感值泄露。
CVSS Information
N/A
Vulnerability Type
N/A