ohmyzsh

mirror of https://github.com/ohmyzsh/ohmyzsh.git synced 2025-12-05 01:46:46 +01:00

History

Marc Cornellà 242e2faa51 ci: improve security in project.yml workflow (#13329 ) There is no inherent security vulnerability in the workflow, but there were certain practices that increased latent risk. In this commit, we: - Explicitly bind app token for each step that needs it, instead of setting it for all steps after "Store app token" - Refactor "classify" step, to not rely on files passed around, and instead uses only awk script. - Remove all instances of template injection within `run` scripts. There was nothing dangerous, but the practice is unsafe. - Sanitize all unwanted characters from PR plugin and theme names. References: W2M1-06 W2M1-07		2025-09-27 20:00:50 +02:00
..
ISSUE_TEMPLATE	chore: update new issue templates	2021-11-30 10:34:45 +01:00
workflows	ci: improve security in project.yml workflow (#13329 )	2025-09-27 20:00:50 +02:00
CODEOWNERS	chore: assign owner for terraform and k8s-related plugins	2024-10-08 19:58:10 +02:00
dependabot.yml	chore(dependabot): remove automatic labels	2024-07-23 19:55:14 +02:00
dependencies.yml	feat(wd): update to v0.10.1 (#13192 )	2025-06-29 17:09:07 +02:00
FUNDING.yml	chore: add Carlo sponsorship	2022-03-10 12:58:46 +01:00
INCIDENT_RESPONSE_PLAN.md	chore: document Incident Response Plan (#13195 )	2025-07-01 17:59:18 +02:00
PULL_REQUEST_TEMPLATE.md	docs: document new aliases policy (#11045 )	2022-08-02 19:27:54 +02:00