Skip to content

Commit

Permalink
Use default environment variables to mitigate injection attacks
Browse files Browse the repository at this point in the history
  • Loading branch information
@AJGranowski
AJGranowski committed Sep 29, 2024
1 parent f453c6d commit a498688
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions .github/workflows/cicd.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -37,7 +37,7 @@ jobs:

- name: Check for Tag
run: |
if git describe --contains ${{ github.sha }}; then
if git describe --contains "$GITHUB_SHA"; then
echo 'COMMIT_IS_TAGGED=true' >> "$GITHUB_ENV";
else
echo 'COMMIT_IS_TAGGED=false' >> "$GITHUB_ENV";
Expand Down Expand Up @@ -200,7 +200,7 @@ jobs:
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7

- name: Extract Version
run: echo "RELEASE_VERSION=$(echo '${{ github.ref }}' | cut -c 19-)" >> $GITHUB_ENV
run: echo "RELEASE_VERSION=$(echo "$GITHUB_REF" | cut -c 19-)" >> $GITHUB_ENV

- name: Generate Release Artifacts
run: |
Expand Down

0 comments on commit a498688

Please sign in to comment.