An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS1mYzRoLXhjZjMtcWo1Zs4AAvik
matrix-sdk 0.6.0 logs access tokens
When sending Matrix requests using an affected version of
matrix-sdk in an application that writes logs using
tracing-subscriber (in a way that includes fields of tracing spans such as
tracing_subscribers default text output from the
fmt module), these logs will contain the user's access token.
Source: GitHub Advisory Database
Published: 11 months ago
Updated: 9 months ago
Fixed in: 0.6.2