andre/crewAI
1
0
Fork 0
mirror of https://github.com/crewAIInc/crewAI.git synced 2026-04-16 07:52:39 +00:00
Code Issues Actions 7 Packages Projects Releases Wiki Activity

ci: quote github.base_ref in shell to prevent injection

Browse Source
This commit is contained in:
Matt Aitchison
2026-02-25 16:15:37 -06:00
parent 0bdc5a093e
commit 2327fd04a3
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
.github/workflows/tests.yml vendored
View File

@@ -104,7 +104,7 @@ jobs:
DURATIONS_ARG=""
if [ -f "$DURATION_FILE" ]; then
if git diff origin/${{ github.base_ref }}...HEAD --name-only 2>/dev/null | grep -q "^lib/.*/tests/.*\.py$"; then
if git diff "origin/${{ github.base_ref }}...HEAD" --name-only 2>/dev/null | grep -q "^lib/.*/tests/.*\.py$"; then
echo "::notice::Test files changed — using even splitting"
else
echo "::notice::Using cached test durations for optimal splitting"