Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Question] Potential Information Leakage #279

Open
nevercodecorrect opened this issue Feb 29, 2024 · 2 comments
Open

[Question] Potential Information Leakage #279

nevercodecorrect opened this issue Feb 29, 2024 · 2 comments

Comments

@nevercodecorrect
Copy link

Your environment

Latest one

Describe your questions

In code here, the open API key is output to the stdout. It could potentially leak the key to unauthorized actor as described in CWE-532. This print is not really necessary.

Some logs info or acctch file

xxx.log:


<!--日志文字贴到这里-->
@github-actions GitHub Actions
Copy link

😊 Welcome to the SolidUI community!!
We are glad that you are contributing by opening this issue.

Please make sure to include all the relevant context.
We will be here shortly.

If you are interested in contributing to our project, please let us know!
You can check out our contributing guide on
👉 How to Contribute.

If you have any questions or suggestions, please feel free to post them here or contact us via email at mengyoupanshan@gmail.com.

We appreciate your interest in SolidUI and look forward to working with you!

@dlimeng
Copy link
Collaborator

dlimeng commented Mar 1, 2024

Welcome to submit PR

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@nevercodecorrect @dlimeng