Potential fix for code scanning alert no. 1: Code injection

ajay-dhangar · github-advanced-security[bot] · web-flow · commit 14647f48b307 · 2025-12-27T14:41:10.000+05:30
Co-authored-by: Copilot Autofix powered by AI &lt;62310815+github-advanced-security[bot]@users.noreply.github.com&gt;
diff --git a/.github/workflows/issue_creation_workflow.yml b/.github/workflows/issue_creation_workflow.yml
@@ -33,16 +33,20 @@ jobs:
 
       - name: Validate Issue Content
         id: validate-issue
+        env:
+          ISSUE_BODY: ${{ github.event.issue.body }}
         run: |
-          issue_body="${{ github.event.issue.body }}"
+          issue_body="$ISSUE_BODY"
           if [[ "$issue_body" == *"AI-generated content"* ]] || [[ "$issue_body" == *"existing sites"* ]]; then
             echo "Issue body contains disallowed content."
             exit 1
           fi
 
       - name: Check for Security and Trust
+        env:
+          ISSUE_BODY: ${{ github.event.issue.body }}
         run: |
-          issue_body="${{ github.event.issue.body }}"
+          issue_body="$ISSUE_BODY"
           if [[ "$issue_body" != *"security"* ]] || [[ "$issue_body" != *"trust"* ]]; then
             echo "Issue does not mention security or trust."
             exit 1
