Fix advisory GHSA-vf82-g995-949v

This commit is contained in:
Filipe PINTO 2023-06-06 13:13:44 +02:00 committed by GitHub
parent c50bb7e39a
commit 0cdc8610db
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -17,6 +17,7 @@ jobs:
REPO: ${{ github.event.repository.name }}
PR_NUMBER: ${{ github.event.issue.number }}
COMMENT_USER_LOGIN: ${{ github.event.comment.user.login }}
PR_COMMENT: ${{ github.event.comment.body }}
outputs:
base_ref: ${{ steps.init-all-internal-env-vars.outputs.base_ref }}
new_version_master_snapshot_version: ${{ steps.check-github-release.outputs.new_version_master_snapshot_version }}
@ -72,7 +73,7 @@ jobs:
- name: Notify user
run: |
if [[ "${{ github.event.comment.body }}" =~ "--force" ]] ; then
if [[ "${{ env.PR_COMMENT }}" =~ "--force" ]] ; then
order="/accept --force"
else
order="/accept"
@ -191,7 +192,7 @@ jobs:
comment="🔨 Auto rebase from \`${{ env.BASE_REPO_FULL_NAME}}/${{ env.BASE_REF }}\` succeeds, \`${{ env.HEAD_REPO_FULL_NAME}}/${{ env.HEAD_REF }}\` now embeds these commits:<br>$(echo ; sed "s/+/-/g" ${{ env.REMAINING_COMMITS_FILE }})"
echo " - ${comment}"
gh pr comment "${PR_NUMBER}" --body "${comment}"
if [[ "${{ github.event.comment.body }}" =~ "--force" ]] ; then
if [[ "${{ env.PR_COMMENT }}" =~ "--force" ]] ; then
order="/accept --force"
else
order="/accept"
@ -274,7 +275,7 @@ jobs:
- name: Close pull request
run: |
if [[ "${{ github.event.comment.body }}" =~ "--force" ]] ; then
if [[ "${{ env.PR_COMMENT }}" =~ "--force" ]] ; then
comment="✅ Pull request merged without waiting for checks and closed by \`${COMMENT_USER_LOGIN}\` with fast forward merge."
else
comment="✅ Pull request merged and closed by \`${COMMENT_USER_LOGIN}\` with fast forward merge."