Accidental Upload of `.env` File in Git Actions

Accidental Upload of `.env` File in Git Actions

CVE-2024-24757 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

open-irs is an issue response robot that reponds to issues in the installed repository. The `.env` file was accidentally uploaded when working with git actions. This problem is fixed in 1.0.1. Discontinuing all sensitive keys and turning into secrets.

Learn more about our Cis Benchmark Audit For Robot Operating System.