CVE-2025-30154CISA KEV: Actively Exploited

reviewdog/action-setup GitHub Action Embedded Malicious Code Vulnerability

Published Mar 24, 2025·Updated Mar 24, 2025

Description

reviewdog action-setup GitHub Action contains an embedded malicious code vulnerability that dumps exposed secrets to Github Actions Workflow Logs.

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free