From e0659d809dc877462b1a1970747b213025bdaf87 Mon Sep 17 00:00:00 2001
From: Nithish Raghunandanan <12782505+nithishr@users.noreply.github.com>
Date: Wed, 12 Nov 2025 17:43:25 +0100
Subject: [PATCH] Potential fix for code scanning alert no. 6: Code injection

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
---
 .github/workflows/update-mcp-registry.yml | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/update-mcp-registry.yml b/.github/workflows/update-mcp-registry.yml
index 9eb6ca3..f1eea80 100644
--- a/.github/workflows/update-mcp-registry.yml
+++ b/.github/workflows/update-mcp-registry.yml
@@ -141,7 +141,9 @@ jobs:
 
       - name: Notify completion
         if: success()
+        env:
+          VERSION: ${{ steps.version.outputs.version }}
         run: |
-          echo "MCP Registry updated successfully for version ${{ steps.version.outputs.version }}"
-          echo "Docker image: docker.io/couchbaseecosystem/mcp-server-couchbase:${{ steps.version.outputs.version }}"
-          echo "PyPI package: couchbase-mcp-server==${{ steps.version.outputs.version }}"
+          echo "MCP Registry updated successfully for version $VERSION"
+          echo "Docker image: docker.io/couchbaseecosystem/mcp-server-couchbase:$VERSION"
+          echo "PyPI package: couchbase-mcp-server==$VERSION"