streamyfin

alteropen/streamyfin

Fork 0

mirror of https://github.com/streamyfin/streamyfin.git synced 2026-06-02 03:58:36 +01:00

Commit Graph

Author	SHA1	Message	Date
Gauvino	06510d2bd6	chore(security): harden helpers + document conflict-labeler safety From the workflow security audit: - symlink-native-dirs.js: drop the execSync shell strings for fs.symlink/mkdir (removes a latent shell-injection surface; also clears dead commented code). - automerge.sh: add 'set -euo pipefail' and restore the starting branch on exit so a mid-merge failure can't leave the repo on the wrong branch. - conflict.yml: document that this pull_request_target workflow must never check out or run PR-head code (it only labels via the API today).	2026-06-01 20:35:05 +02:00
Fredrik Burmester	23d9cd36d1	chore	2025-01-06 10:14:17 +01:00
Fredrik Burmester	b243524a7d	chore	2025-01-06 10:13:40 +01:00

Author

SHA1

Message

Date

Gauvino

06510d2bd6

chore(security): harden helpers + document conflict-labeler safety

From the workflow security audit:
- symlink-native-dirs.js: drop the execSync shell strings for fs.symlink/mkdir
  (removes a latent shell-injection surface; also clears dead commented code).
- automerge.sh: add 'set -euo pipefail' and restore the starting branch on exit
  so a mid-merge failure can't leave the repo on the wrong branch.
- conflict.yml: document that this pull_request_target workflow must never check
  out or run PR-head code (it only labels via the API today).

2026-06-01 20:35:05 +02:00

Fredrik Burmester

23d9cd36d1

chore

2025-01-06 10:14:17 +01:00

Fredrik Burmester

b243524a7d

chore

2025-01-06 10:13:40 +01:00

3 Commits