>From the notice: "We strongly recommend affected users immediately re-roll all of their credentials, tokens, or keys located in the environment variables in their CI processes that used one of Codecov’s Bash Uploaders."
On Thu, Apr 15, 2021 at 11:35 AM Udi Meiri <[email protected]> wrote: > I got this email: https://about.codecov.io/security-update/ > > This is where we use codecov: > > https://github.com/apache/beam/blob/39923d8f843ecfd3d89443dccc359c14aea8f26f/sdks/python/tox.ini#L105 > > I'm not sure if this runs the "bash uploader", but we do set > a CODECOV_TOKEN environment variable. >
smime.p7s
Description: S/MIME Cryptographic Signature
