Y24-246 - [BUG] Backticks cause issue generator action to exit prematurely #9
Assignees
Labels
bug
Something isn't working
Comments
psd-issuer
bot
changed the title
SHIV5T3R
changed the title
This was referenced Aug 21, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
When creating an issue, there is an action that will prepend the issue name with an automatically generated story number. If there is a backtick (and potentially other special characters), the action will exit before completion.
To Reproduce
Steps to reproduce the behaviour:
Create an issue with opening and closing backticks.
Example
Go to actions and click the most relevant run
You will notice that the action didn't run
Expected behaviour
The action should escape this and prepend a string.
Additional context
This is also a (very minor) security vulnerability because it will attempt to run the string within the backticks as if it was a command.
The text was updated successfully, but these errors were encountered: