mirror of
https://github.com/actions/checkout.git
synced 2024-09-20 14:49:53 +08:00
fe77b196f4
The user provided inputs here are vulnerable to script injection. This PR uses an intermediary environment variable to treat the input as a string, rather than as part of the command. See: https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions#using-an-intermediate-environment-variable
34 lines
886 B
YAML
34 lines
886 B
YAML
name: Update Main Version
|
|
run-name: Move ${{ github.event.inputs.main_version }} to ${{ github.event.inputs.target }}
|
|
|
|
on:
|
|
workflow_dispatch:
|
|
inputs:
|
|
target:
|
|
description: The tag or reference to use
|
|
required: true
|
|
main_version:
|
|
type: choice
|
|
description: The main version to update
|
|
options:
|
|
- v3
|
|
|
|
jobs:
|
|
tag:
|
|
runs-on: ubuntu-latest
|
|
env:
|
|
TARGET: ${{ github.event.inputs.target }}
|
|
MAIN_VERSION: ${{ github.event.inputs.main_version }}
|
|
steps:
|
|
- uses: actions/checkout@v3
|
|
with:
|
|
fetch-depth: 0
|
|
- name: Git config
|
|
run: |
|
|
git config user.name github-actions
|
|
git config user.email github-actions@github.com
|
|
- name: Tag new target
|
|
run: git tag -f "$MAIN_VERSION" "$TARGET"
|
|
- name: Push new tag
|
|
run: git push origin "$MAIN_VERSION" --force
|