Skip to content

[GHSA-75mw-h36v-2jv7] Dosage Vulnerable to Stored Cross-Site Scripting (XSS) in HTML/RSS Output Handlers #7609

[GHSA-75mw-h36v-2jv7] Dosage Vulnerable to Stored Cross-Site Scripting (XSS) in HTML/RSS Output Handlers

[GHSA-75mw-h36v-2jv7] Dosage Vulnerable to Stored Cross-Site Scripting (XSS) in HTML/RSS Output Handlers #7609

name: Create PR staging branch
on:
pull_request_target:
branches: [main]
types: [opened, synchronize, reopened, edited]
paths:
- "advisories/**"
workflow_dispatch:
permissions:
contents: write # Required to create and push branches
pull-requests: write # Required to edit PR base branch
jobs:
ensure-base-is-staging:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v6
- name: ensure base is staging
env:
PR_AUTHOR: ${{ github.event.pull_request.user.login }}
PR_NUMBER: ${{ github.event.pull_request.number }}
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: |
set -xeo pipefail
BRANCH_NAME="$PR_AUTHOR"/advisory-improvement-"$PR_NUMBER"
git checkout -b "$BRANCH_NAME"
git push origin "$BRANCH_NAME"
gh pr edit --repo ${{ github.repository }} $PR_NUMBER --base "$BRANCH_NAME"