CredManifest (Azure AD keyCredential property information disclosure)
Published Wed, Nov 17th, 2021
Automation Account 'Run as' credentials (PFX certificates) were being stored
in cleartext, in Azure Active Directory (AAD). These credentials were available
to anyone with the ability to read information about App Registrations (typically
most AAD users).