Dbjorge

**Name of the Vulnerable Software and Affected Versions** semantic-release versions prior to 17.2.3 **Description** The issue concerns the accidental disclosure of secrets in the npm package semantic-release. Secrets that contain characters which become encoded when included in a URL can be disclosed, while secrets without such characters are masked properly. **Recommendations** For versions prior to 17.2.3, update to version 17.2.3 to resolve the issue. As a temporary workaround, consider avoiding the use of secrets that contain characters which become encoded when included in a URL until the update is applied.