Checklist (Please check before submitting)
Is your feature request related to a problem? Please describe.
There are multiple locations where ${{ ... }} expressions are interpolated directly inside run:. These values are then interpreted by the shell expressions. Impact includes arbitrary command execution in CI, build/artifact tampering.
Describe the solution you'd like
Replace all ${{ ... }} expression in run: steps with environment variables.
Describe alternatives you've considered
Keep as is.
Additional context
Should be updated in cFS, EdsLib, cFE, and OSAL. There may be additional repositories that need to be updated.
Requester Info
Ariel Walker, MCSG TECH.
Checklist (Please check before submitting)
Is your feature request related to a problem? Please describe.
There are multiple locations where ${{ ... }} expressions are interpolated directly inside
run:. These values are then interpreted by the shell expressions. Impact includes arbitrary command execution in CI, build/artifact tampering.Describe the solution you'd like
Replace all ${{ ... }} expression in
run:steps with environment variables.Describe alternatives you've considered
Keep as is.
Additional context
Should be updated in cFS, EdsLib, cFE, and OSAL. There may be additional repositories that need to be updated.
Requester Info
Ariel Walker, MCSG TECH.