Update Maven resources plugin & Apache Commons CLI to address CVE-2024-47554 #5229
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: dapr-bot | |
| on: | |
| issue_comment: {types: created} | |
| jobs: | |
| daprbot: | |
| name: bot-processor | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Comment analyzer | |
| uses: actions/github-script@v7 | |
| with: | |
| github-token: ${{secrets.DAPR_BOT_TOKEN}} | |
| script: | | |
| const payload = context.payload; | |
| const issue = context.issue; | |
| const isFromPulls = !!payload.issue.pull_request; | |
| const commentBody = payload.comment.body; | |
| if (!isFromPulls && commentBody && commentBody.indexOf("/assign") == 0) { | |
| if (!issue.assignees || issue.assignees.length === 0) { | |
| // See https://github.com/actions/github-script#breaking-changes-in-v5 | |
| await github.rest.issues.addAssignees({ | |
| owner: issue.owner, | |
| repo: issue.repo, | |
| issue_number: issue.number, | |
| assignees: [context.actor], | |
| }) | |
| } | |
| return; | |
| } |