diff options
| author | Markus Holtermann <info@markusholtermann.eu> | 2025-11-06 14:24:28 +0100 |
|---|---|---|
| committer | Natalia <124304+nessita@users.noreply.github.com> | 2025-11-10 15:54:23 -0300 |
| commit | ca33f120658e9700cb62577f20ea620388974d45 (patch) | |
| tree | 681364f6eb20df295c6de70cb44feff367b76b3a | |
| parent | d2a414b56f0289343433ca252db89e18f3090b15 (diff) | |
[4.2.x] Fixed unsafe variable interpolation in GitHub Action workflow.
Thank you Davide Netti for the report and initial patch.
Co-authored-by: Davide Netti <davide.netti4@gmail.com>
Backport of 01c70ba14899409e86dc3f6c6bcae0afc48094e7 from main.
| -rw-r--r-- | .github/workflows/check_commit_messages.yml | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/.github/workflows/check_commit_messages.yml b/.github/workflows/check_commit_messages.yml index ee9536f482..8fc5dd5cdf 100644 --- a/.github/workflows/check_commit_messages.yml +++ b/.github/workflows/check_commit_messages.yml @@ -24,8 +24,9 @@ jobs: echo "prefix=[$VERSION]" >> $GITHUB_OUTPUT - name: Check PR title prefix + env: + TITLE: ${{ github.event.pull_request.title }} run: | - TITLE="${{ github.event.pull_request.title }}" PREFIX="${{ steps.vars.outputs.prefix }}" if [[ "$TITLE" != "$PREFIX"* ]]; then echo "❌ PR title must start with the required prefix: $PREFIX" |