fix some audit findings #91

	name: Verify PRs to main

	on:
	workflow_dispatch:
	pull_request:
	branches:
	- main
	- develop

	jobs:
	configure:
	runs-on: ubuntu-latest
	outputs:
	uid_gid: ${{ steps.get-user.outputs.uid_gid }}
	steps:
	- id: get-user
	run: echo "uid_gid=$(id -u):$(id -g)" >> $GITHUB_OUTPUT

	get_version:
	needs: configure
	runs-on: ubuntu-latest
	container:
	image: zondax/ledger-app-builder:latest
	options: --user ${{ needs.configure.outputs.uid_gid }}
	outputs:
	version: ${{ steps.store-version.outputs.version }}
	steps:
	- name: Checkout
	uses: actions/checkout@v3
	with:
	submodules: true
	- run: make version
	- id: store-version
	run: echo "version=$(cat ./app/app.version)" >> $GITHUB_OUTPUT

	check_app_version:
	needs: get_version
	runs-on: ubuntu-latest
	steps:
	- id: checkTag
	uses: mukunku/tag-exists-action@v1.0.0
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	with:
	tag: ${{ needs.get_version.outputs.version }}

	- run: echo ${{ steps.checkTag.outputs.exists }}

	- name: Tag exists
	if: ${{ steps.checkTag.outputs.exists == 'true' }}
	run: exit 1

Provide feedback