Security Advisories - PKSA-pwvr-3754-v57r - Packagist.org

PKSA-pwvr-3754-v57r Security Advisory

[HIGH] Github Actions issued GITHUB_TOKEN disclosure in GitHub Actions logs

PKSA-pwvr-3754-v57r CVE-2026-45793 GHSA-f9f8-rm49-7jv2

Affected package: composer/composer

Affected version: >=2.3,<2.9.8|>=2.0.0,<2.2.28|>=1.0,<1.10.28

Reported by:
FriendsOfPHP/security-advisories, GitHub