[FSSDK-10665] fix: Github Actions YAML files vulnerable to script injections corrected (#425)

FarhanAnjum-opti · web-flow · commit 071d437b4b02 · 2024-09-24T19:54:53.000+06:00
diff --git a/.github/workflows/integration_test.yml b/.github/workflows/integration_test.yml
@@ -9,6 +9,8 @@ on:
 jobs:
   test:
     runs-on: ubuntu-latest
+    env:
+      HEAD_REF: ${{ github.head_ref }}
     steps:
     - uses: actions/checkout@v3
       with:
@@ -20,11 +22,11 @@ jobs:
     - name: set SDK Branch if PR
       if: ${{ github.event_name == 'pull_request' }}
       run: |
-        echo "SDK_BRANCH=${{ github.head_ref }}" >> $GITHUB_ENV
+        echo "SDK_BRANCH=$HEAD_REF" >> $GITHUB_ENV
     - name: set SDK Branch if not pull request
       if: ${{ github.event_name != 'pull_request' }}
       run: |
-        echo "SDK_BRANCH=${{ github.ref_name }}" >> $GITHUB_ENV
+        echo "SDK_BRANCH=$HEAD_REF" >> $GITHUB_ENV
     - name: Trigger build
       env:
         SDK: agent
