Sulkta-Coop/straw
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

ci: fix shell injection in backport workflow

Browse source
This commit is contained in:
RinCodeForge927 2026-01-13 20:42:10 +07:00
parent 77d62deeed
commit 7dc38286c0
1 changed files with 3 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

4
.github/workflows/backport-pr.yml vendored
View file

@ -25,9 +25,11 @@ jobs:
- uses: actions/checkout@v4 - uses: actions/checkout@v4
- name: Get backport metadata - name: Get backport metadata
# the target branch is the first argument after `/backport` # the target branch is the first argument after `/backport`
env:
COMMENT_BODY: ${{ github.event.comment.body }}
run: | run: |
set -euo pipefail set -euo pipefail
body="${{ github.event.comment.body }}" body="$COMMENT_BODY"
line=${body%%$'\n'*} # Get the first line line=${body%%$'\n'*} # Get the first line
if [[ $line =~ ^/backport[[:space:]]+([^[:space:]]+) ]]; then if [[ $line =~ ^/backport[[:space:]]+([^[:space:]]+) ]]; then