Information Exposure
Composer is vulnerable to Information Exposure. The vulnerability is due to improper validation of GitHub OAuth token formats that causes invalid tokens to be written to standard error, which allows an attacker to obtain sensitive authentication tokens from logs when validation fails...