github-actions[bot]
commented
2 years ago Job PR-1737-cee38bf is done. Docs are uploaded to http://gluon-vision-staging.s3-website-us-west-2.amazonaws.com/PR-1737/cee38bf/index.html
Closed zhreshold closed 2 years ago
github-actions[bot]
commented
2 years ago Job PR-1737-cee38bf is done. Docs are uploaded to http://gluon-vision-staging.s3-website-us-west-2.amazonaws.com/PR-1737/cee38bf/index.html
bryanyzhu
commented
2 years ago Thanks a lot for the quick fix! @zhreshold
Fix github action injection vulnerable execution privilege.
In short, github action expression: env.XXX can be attacked with bash command special characters, which may trigger privileged execution on aws batch.
@yinweisu @bryanyzhu please review and test ASAP