Exposures › CVE-2025-30154

CVE-2025-30154

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2025-03-24
Reference
⌖ exploited in the wild shame 50/100 exploited-in-wild

reviewdog action-setup GitHub Action contains an embedded malicious code vulnerability that dumps exposed secrets to Github Actions Workflow Logs.

Players implicated

Description

reviewdog action-setup GitHub Action contains an embedded malicious code vulnerability that dumps exposed secrets to Github Actions Workflow Logs.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.