fix: pin 4 unpinned action(s),extract 303 unsafe expression(s) to env vars by dagecko · Pull Request #14937 · redis/redis
Cleaning up quoting on extracted env var references for consistency and correctness. Note: daily.yml test args (INPUT_TEST_ARGS, INPUT_CLUSTER_TEST_ARGS) are intentionally left unquoted as they contain multiple space-separated flags that need word splitting to work correctly.
Remove workflow_dispatch input extractions from daily.yml per maintainer feedback — those inputs are maintainer-only and do not need intermediate env vars. Keep: - codecov/codecov-action SHA pin (supply chain hardening) - COVERITY_SCAN_TOKEN / COVERITY_SCAN_EMAIL moved to env blocks
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode characters