From c088ab0b862bd8fe27444e051110d33b58aac09a Mon Sep 17 00:00:00 2001 From: behnam-deriv <133759298+behnam-deriv@users.noreply.github.com> Date: Fri, 15 Mar 2024 13:36:28 +0800 Subject: [PATCH] ci: [DSEC-25506] Fix security issue in GitHub actions (#532) Co-authored-by: sahani-deriv <125638269+sahani-deriv@users.noreply.github.com> Co-authored-by: mobile-apps-deriv <134251399+mobile-apps-deriv@users.noreply.github.com> Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: sahani-deriv Co-authored-by: Ahrar <98078754+ahrar-deriv@users.noreply.github.com> --- .github/actions/send_slack_notifications/action.yml | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) diff --git a/.github/actions/send_slack_notifications/action.yml b/.github/actions/send_slack_notifications/action.yml index 0c7032859..c8a1dba15 100644 --- a/.github/actions/send_slack_notifications/action.yml +++ b/.github/actions/send_slack_notifications/action.yml @@ -14,6 +14,10 @@ runs: using: composite steps: - name: Send Slack Notification on Package Update + env: + SLACK_WEBHOOK_PACKAGE_UPDATE: ${{ inputs.SLACK_WEBHOOK_PACKAGE_UPDATE }} + PR_TITLE: ${{ inputs.PR_TITLE }} + TAGS: ${{ inputs.TAGS }} run: | curl -X POST -H 'Content-type: application/json' \ --data '{ @@ -29,17 +33,17 @@ runs: "type": "section", "text": { "type": "mrkdwn", - "text": "*${{ inputs.PR_TITLE }}*" + "text": "*$PR_TITLE*" } }, { "type": "section", "text": { "type": "mrkdwn", - "text": "*Packages released:*\n- *${{ inputs.TAGS }}*\n*Changelog:* https://github.com/regentmarkets/flutter-deriv-packages/blob/master/CHANGELOG.md" + "text": "*Packages released:*\n- *$TAGS*\n*Changelog:* https://github.com/regentmarkets/flutter-deriv-packages/blob/master/CHANGELOG.md" } } ] }' \ - ${{ inputs.SLACK_WEBHOOK_PACKAGE_UPDATE }} + $SLACK_WEBHOOK_PACKAGE_UPDATE shell: bash