The OpenSSF scorecard tool flagged the following workflow pattern as dangerous:
Warn: script injection with untrusted input 'github.event.comment.body': .github/workflows/greenboot-rs.yaml:53
Refer: https://github.com/ossf/scorecard/blob/main/docs/checks.md#dangerous-workflow
The OpenSSF scorecard tool flagged the following workflow pattern as dangerous:
Warn: script injection with untrusted input 'github.event.comment.body': .github/workflows/greenboot-rs.yaml:53greenboot/.github/workflows/greenboot-rs.yaml
Line 53 in 030fb2b
Refer: https://github.com/ossf/scorecard/blob/main/docs/checks.md#dangerous-workflow