Cedric Buissart 🐶

2020-04-23 15:07:11 UTC

The "User input" entry from Job Invocation may contain plaintext password or other sensitive data. As a result, anyone who could view the job invocation could see it.

The fix was to restrict the ability to view Job Invocation to users to are entitle to execute it.

Source link

You must be logged in to post a comment.