From bdfabba1b9b4184a03a432d0aa881db5b3460dca Mon Sep 17 00:00:00 2001
From: "C.Lee Taylor" <leet@tari.com>
Date: Wed, 10 Jan 2024 13:23:46 +0200
Subject: [PATCH] ci(fix): prevent code injection

---
 .github/workflows/pr_title.yml | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/pr_title.yml b/.github/workflows/pr_title.yml
index dd7905d..ebd6666 100644
--- a/.github/workflows/pr_title.yml
+++ b/.github/workflows/pr_title.yml
@@ -1,5 +1,7 @@
+---
 name: PR
-on:
+
+'on':
   pull_request:
     types:
       - opened
@@ -15,6 +17,9 @@ jobs:
         run: |
           npm install -g @commitlint/cli @commitlint/config-conventional
           echo "module.exports = {extends: ['@commitlint/config-conventional']}" > commitlint.config.js
+
       - name: lint
+        env:
+          PR_TITLE: ${{github.event.pull_request.title}}
         run: |
-          echo "${{github.event.pull_request.title}}" | commitlint
+          echo "$PR_TITLE" | commitlint