beenull/ladybird
1
0
Fork 0
mirror of https://github.com/LadybirdBrowser/ladybird.git synced 2024-09-29 08:11:13 +00:00
Code Issues Actions 5 Packages Projects Releases Wiki Activity

CI: Disable variable substitution on input to the twitter script

Browse source 
This prevents command injection through backticks in commit messages.
This commit is contained in:
Idan Horowitz 2021-08-15 21:50:12 +03:00 committed by Ali Mohammad Pur
parent 788472f91a
commit 6602ab27e1
Notes: sideshowbarker 2024-07-18 05:38:55 +09:00 
Author: https://github.com/IdanHo
Commit: https://github.com/SerenityOS/serenity/commit/6602ab27e12
Pull-request: https://github.com/SerenityOS/serenity/pull/9443
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
.github/workflows/twitter.yml vendored
View file

@ -14,7 +14,7 @@ jobs:
node-version: '14'
- run: npm i twit
- run: |
node ${{ github.workspace }}/Meta/tweet-commits.js << EOF
node ${{ github.workspace }}/Meta/tweet-commits.js << 'EOF'
${{ toJSON(github.event) }}
EOF
env: