NA – CVE-2020-26294 – Vela is a Pipeline Automation (CI/CD) framework…

Vela is a Pipeline Automation (CI/CD) framework built on Linux container technology written in Golang. In Vela compiler before version 0.6.1 there is a vulnerability which allows exposure of server configuration. It impacts all users of Vela. An attacker can use Sprig’s `env` function to retrieve….Latest news clusters for enRead More