Description

Web applications must manage various secrets such as API keys, database credentials and/or cryptographic secrets. These secrets must be kept private for security but sometimes they are leaked via JavaScript files, error messages, etc.

It was identified that this page is leaking one or more secrets. Please consult the Details section for more information.

Remediation

It's recommended to revoke/change the leaked secrets and investigate and resolve the source of the leakage.

Secrets that are embedded in code can be accidentally exposed to the public. It's recommended to store them in environment variables or in files outside of your application's source tree.

References

Related Vulnerabilities