Boennemann

**Name of the Vulnerable Software and Affected Versions** grunt-gh-pages versions prior to 0.10.0 **Description** The issue concerns the exposure of GitHub credentials in certain deployment scenarios. In setups where a GitHub token is directly injected into the URL for authentication, the token may be outputted as part of the logging function in affected versions, potentially compromising the credentials if the logs are publicly accessible. **Recommendations** For versions prior to 0.10.0, update to version 0.10.0 or later.