Command Injection vulnerability in getsentry/sentry-javascript .github/workflows/fix-security-vulnerability.yml

Repo: `getsentry/sentry-javascript`<br>Confidence: High<br>Severity: High<br>Weakness: yaml.github-actions.security.run-shell-injection.run-shell-injection

---

To reduce risk of accidental information disclosure, we are intentionally not exposing full vulnerability details here<br>Please see the parent ticket or Semgrep Console for more details: [https://semgrep.dev/orgs/sentry/findings/706729030](<https://semgrep.dev/orgs/sentry/findings/706729030>)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Command Injection vulnerability in getsentry/sentry-javascript .github/workflows/fix-security-vulnerability.yml #19553

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Uh oh!

Command Injection vulnerability in getsentry/sentry-javascript .github/workflows/fix-security-vulnerability.yml #19553

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions