Lightbend Alpakka Kafka before 4.0.2 logs its configuration as debug information, and thus log files may contain credentials (if plain cleartext login is configured). This occurs in akka.kafka.internal.KafkaConsumerActor.
CPE | Name | Operator | Version |
---|---|---|---|
com.typesafe.akka:akka-stream-kafka | lt | 4.0.2 |