Patchwork PR: Autofix

[patched-codes]

This pull request from patched fixes 6 issues.

---

• File changed: patchwork/step.py
  Fix: Catch specific exceptions instead of using a broad exception clause

  Modified the try-except block in the __managed_run method to catch specific exceptions to avoid masking security-related exceptions.

• File changed: patchwork/steps/CallCommand/CallCommand.py
  Fix command injection by using list format for subprocess.run

  The potential for command injection has been mitigated by strictly using list arguments with subprocess.run(), ensuring user-supplied input is securely handled.

• File changed: patchwork/steps/CallCommand/typed.py
  Fix environment variable injection vulnerability

  Sanitize 'env' parameter to prevent environment variable injection in CallCommandInputs.

• File changed: patchwork/steps/ScanPSFuzz/ScanPSFuzz.py
  Secure handling of OpenAI API key

  The OpenAI API key is now retrieved securely from system environment variables at runtime, reducing the risk of exposure.

• File changed: patchwork/steps/ScanPSFuzz/typed.py
  Secure storage and access of API keys.

  Refactored the API key handling to improve security by moving it from direct input to a secured environment variable access.

• File changed: pyproject.toml
  Update vulnerable package versions

  Updated vulnerable package versions to more flexible or latest stable versions to mitigate potential security risks.