CVE-2024-1540 Information

Description

Previously it was possible to exfiltrate secrets in Gradio’s CI but this is now fixed.

Reference

https://huntr.com/bounties/0e39e974-9a66-476f-91f5-3f37abb03d77 https://github.com/gradio-app/gradio/commit/d56bb28df80d8db1f33e4acf4f6b2c4f87cb8b28