Tokens that match the format for GitLab secret keys were found in the logs of the affected API.
GitLab secrets are sensitive tokens or keys used to authenticate and authorize access to GitLab services.
Remediation
GitLab secret keys should not be transmitted over the network. Review the logs in question and verify that the transmission of secrets is happening in accordance with your security policies.
Example Attack Scenario
How to Identify with Example Scenario
How to Resolve with Example Scenario
How to Identify with Example Scenario
Find the text in bold to identify issues such as these in API specifications
How to Resolve with Example Scenario
Modify the text in bold to resolve issues such as these in API specifications
