Skip to content

Commit df4b533

Browse files
ievansievans
authored
Merge pull request #11 from semgrep/semgrep-autofix/1774294178
Fix shell injection vulnerability in release workflow
2 parents 1932e6d + b5ec9b6 commit df4b533

1 file changed

Lines changed: 5 additions & 2 deletions

File tree

.github/workflows/release.yml

Lines changed: 5 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -42,9 +42,12 @@ jobs:
4242

4343
- name: Get version
4444
id: version
45+
env:
46+
EVENT_NAME: ${{ github.event_name }}
47+
INPUT_VERSION: ${{ inputs.version }}
4548
run: |
46-
if [ "${{ github.event_name }}" = "workflow_dispatch" ]; then
47-
echo "version=${{ inputs.version }}" >> $GITHUB_OUTPUT
49+
if [ "$EVENT_NAME" = "workflow_dispatch" ]; then
50+
echo "version=$INPUT_VERSION" >> $GITHUB_OUTPUT
4851
else
4952
echo "version=${GITHUB_REF#refs/tags/}" >> $GITHUB_OUTPUT
5053
fi

0 commit comments

Comments
 (0)