From d316213e1fd02ea9cbd97760d039aa790ce3936a Mon Sep 17 00:00:00 2001
From: FarhanAnjum-opti <farhan.anjum@optimizely.com>
Date: Tue, 24 Sep 2024 00:54:49 +0600
Subject: [PATCH] [FSSDK-10665] fix: Github Actions YAML files vulnerable to
 script injections corrected

---
 .github/workflows/android.yml | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/android.yml b/.github/workflows/android.yml
index 8c0872ad..8f924677 100644
--- a/.github/workflows/android.yml
+++ b/.github/workflows/android.yml
@@ -44,13 +44,15 @@ jobs:
         HEAD_REF: ${{ github.head_ref }}
       if: ${{ github.event_name == 'pull_request' }}
       run: |
-        echo "SDK_BRANCH=${{ env.HEAD_REF }}" >> $GITHUB_ENV
-        echo "TRAVIS_BRANCH=${{ env.HEAD_REF }}" >> $GITHUB_ENV
+        echo "SDK_BRANCH=$HEAD_REF" >> $GITHUB_ENV
+        echo "TRAVIS_BRANCH=$HEAD_REF" >> $GITHUB_ENV
     - name: set SDK Branch if not pull request
+      env:
+        REF_NAME: ${{github.ref_name}}
       if: ${{ github.event_name != 'pull_request' }}
       run: |
-        echo "SDK_BRANCH=${{ github.ref_name }}" >> $GITHUB_ENV
-        echo "TRAVIS_BRANCH=${{ github.ref_name }}" >> $GITHUB_ENV
+        echo "SDK_BRANCH=$REF_NAME" >> $GITHUB_ENV
+        echo "TRAVIS_BRANCH=$REF_NAME" >> $GITHUB_ENV
     - name: Trigger build
       env:
         SDK: android