sure/.github/workflows at 828c53f62d7db9d79cd7643e725b3328c1643888 - sure

QT/sure

mirror of https://github.com/we-promise/sure.git synced 2026-04-07 14:31:25 +00:00

Files

luo jiyin 828c53f62d Fix variable injection vulnerability in helm-release workflow (#541 )

* Fix variable injection vulnerability in helm-release workflow

  - Use explicit env block to pass GitHub context variables safely
  - Remove duplicate hardcoded git config that overwrote earlier settings
  - Prevents potential shell injection via  expansion

Signed-off-by: luojiyin <luojiyin@hotmail.com>

* Fix git config for gh-pages repository checkout

   Apply git user config inside gh-pages directory before commit,
   as the earlier config only applies to the main repository checkout.

Signed-off-by: luojiyin <luojiyin@hotmail.com>

---------

Signed-off-by: luojiyin <luojiyin@hotmail.com>

2026-01-07 21:12:08 +01:00

ci.yml

Redis check for self hosted apps (#2353 )

2025-06-09 18:30:52 -04:00

helm-release.yaml

Fix variable injection vulnerability in helm-release workflow (#541 )

2026-01-07 21:12:08 +01:00

pr.yml

Monorepo with Helm - don't act when modifying charts/

2025-12-13 20:56:34 +00:00

publish.yml

Tag stable images as latest as well

2025-12-31 19:50:49 +01:00