A credential leak in OpenC3 COSMOS before v6.0.2 allows attackers to access service credentials as environment variables stored in all containers.
"https://github.com/pypa/advisory-database/blob/main/vulns/openc3/PYSEC-2025-255.yaml"