Skip to content

Commit 95ea471

Browse files
aikido-autofix[bot]aikido-autofix[bot]
authored
fix(security): autofix Template Injection in GitHub Workflows Action (#14230)
Co-authored-by: aikido-autofix[bot] <119856028+aikido-autofix[bot]@users.noreply.github.com>
1 parent 80844bb commit 95ea471

File tree

2 files changed

+14
-10
lines changed

2 files changed

+14
-10
lines changed

.github/workflows/binaries.yml

Lines changed: 7 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -375,12 +375,16 @@ jobs:
375375
runs-on: ubuntu-latest
376376
steps:
377377
- name: echo PR data
378+
env:
379+
PR_NUMBER: ${{ github.event.pull_request.number }}
380+
PR_URL: ${{ github.event.pull_request.html_url }}
381+
PR_BODY: ${{ github.event.pull_request.body }}
378382
run: |
379-
echo "PR Number: ${{ github.event.pull_request.number }}"
380-
echo "PR URL: ${{ github.event.pull_request.html_url }}"
383+
echo "PR Number: $PR_NUMBER"
384+
echo "PR URL: $PR_URL"
381385
cat <<EOF
382386
PR Body:
383-
${{ github.event.pull_request.body }}
387+
$PR_BODY
384388
EOF
385389
- name: Determine issue number
386390
id: get_issue_number
@@ -421,10 +425,6 @@ jobs:
421425
include:
422426
- os: macos-15
423427
displayName: macOS (ARM64)
424-
suffix: '_arm64'
425-
- os: macos-15-intel # intel image
426-
displayName: macOS
427-
suffix: ''
428428
runs-on: ${{ matrix.os }}
429429
steps:
430430
- name: Download from GitHub workflow artifacts store (macOS)

.github/workflows/link-issue.yml

Lines changed: 7 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -26,12 +26,16 @@ jobs:
2626
issue_number: ${{ steps.get_issue_number.outputs.ticketNumber }}
2727
steps:
2828
- name: echo PR data
29+
env:
30+
PR_NUMBER: ${{ github.event.pull_request.number }}
31+
PR_URL: ${{ github.event.pull_request.html_url }}
32+
PR_BODY: ${{ github.event.pull_request.body }}
2933
run: |
30-
echo "PR Number: ${{ github.event.pull_request.number }}"
31-
echo "PR URL: ${{ github.event.pull_request.html_url }}"
34+
echo "PR Number: $PR_NUMBER"
35+
echo "PR URL: $PR_URL"
3236
cat <<EOF
3337
PR Body:
34-
${{ github.event.pull_request.body }}
38+
$PR_BODY
3539
EOF
3640
- name: Determine issue number
3741
id: get_issue_number

0 commit comments

Comments
 (0)