Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Fix command injection vulnerability in autoTestPR (#2244)
Fixes a command injection vulnerability with the auto test PR GitHub Workflow. See https://securitylab.github.com/research/github-actions-untrusted-input Also removes the unecessary `&& github.event_name != 'pull_request'` condition from the autoTestPR job because it will always be satisfied. (This workflow only triggers upon issue_comment, so `github.event_name` will never be 'pull_request')
- Loading branch information