Skip to content

Commit 1a76bff

Browse files
Copilotpelikhan
Copilot
and
pelikhan
committed
Fix template injection vulnerabilities in repository metadata fields
- Move github.repository to REPO_NAME env variable in git config step - Move github.event.repository.default_branch to DEFAULT_BRANCH env variable in git patch step - Update test expectations to match new env block structure - Recompile all affected workflows with secure environment-based approach Co-authored-by: pelikhan <[email protected]>
1 parent 2b118fb commit 1a76bff

File tree

66 files changed

+297
-124
lines changed

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

66 files changed

+297
-124
lines changed

.github/workflows/artifacts-summary.lock.yml

Lines changed: 3 additions & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

.github/workflows/audit-workflows.lock.yml

Lines changed: 3 additions & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

.github/workflows/blog-auditor.lock.yml

Lines changed: 3 additions & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

.github/workflows/brave.lock.yml

Lines changed: 3 additions & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

.github/workflows/changeset-generator.firewall.lock.yml

Lines changed: 8 additions & 4 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

.github/workflows/ci-doctor.lock.yml

Lines changed: 3 additions & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

.github/workflows/cli-version-checker.lock.yml

Lines changed: 3 additions & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

.github/workflows/commit-changes-analyzer.lock.yml

Lines changed: 3 additions & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

.github/workflows/copilot-agent-analysis.lock.yml

Lines changed: 3 additions & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

.github/workflows/copilot-pr-prompt-analysis.lock.yml

Lines changed: 3 additions & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)