Fix code scanning alert no. 12: Insecure randomness #148
release-drafter.yml
on: pull_request
update_release_draft
4s
Annotations
2 errors
update_release_draft
Validation Failed: {"resource":"Release","code":"invalid","field":"target_commitish"}
{
name: 'HttpError',
id: '11275889889',
status: 422,
response: {
url: 'https://api.github.com/repos/reactplay/react-play/releases/161881141',
status: 422,
headers: {
'access-control-allow-origin': '*',
'access-control-expose-headers': 'ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset',
connection: 'close',
'content-length': '210',
'content-security-policy': "default-src 'none'",
'content-type': 'application/json; charset=utf-8',
date: 'Thu, 10 Oct 2024 14:15:45 GMT',
'referrer-policy': 'origin-when-cross-origin, strict-origin-when-cross-origin',
server: 'github.com',
'strict-transport-security': 'max-age=31536000; includeSubdomains; preload',
vary: 'Accept-Encoding, Accept, X-Requested-With',
'x-accepted-github-permissions': 'contents=write',
'x-content-type-options': 'nosniff',
'x-frame-options': 'deny',
'x-github-api-version-selected': '2022-11-28',
'x-github-media-type': 'github.v3; format=json',
'x-github-request-id': '7C16:1A34E0:AA72E:14995B:6707E191',
'x-ratelimit-limit': '5000',
'x-ratelimit-remaining': '4942',
'x-ratelimit-reset': '1728572490',
'x-ratelimit-resource': 'core',
'x-ratelimit-used': '58',
'x-xss-protection': '0'
},
data: {
message: 'Validation Failed',
errors: [
{
resource: 'Release',
code: 'invalid',
field: 'target_commitish'
}
],
documentation_url: 'https://docs.github.com/rest/releases/releases#update-a-release',
status: '422'
}
},
request: {
method: 'PATCH',
url: 'https://api.github.com/repos/reactplay/react-play/releases/161881141',
headers: {
accept: 'application/vnd.github.v3+json',
'user-agent': 'probot/12.2.5 octokit-core.js/3.5.1 Node.js/20.13.1 (linux; x64)',
authorization: 'token [REDACTED]',
'content-type': 'application/json; charset=utf-8'
},
body: '{"body":"## Changes\\n\\n- Fix code scanning alert no. 2: Incomplete string escaping or encoding @priyankarpal (#1543)\\n- Feature play zoomlogin @day-lee (#1516)\\n- Testing Hacktoberfest issue unassign workflow @Abhishek-90 (#1535)\\n- Automatic Unassign Hacktoberfest Issues workflow @Abhishek-90 (#1528)\\n- feat: share button to share plays (#1522) @tanishq-singh-2407 (#1527)\\n- fix: styling with filter owner (#1518) @tanishq-singh-2407 (#1525)\\n- hacktoberfest label @priyankarpal (#1514)\\n- fix: adding hacktoberfest checkbox @priyankarpal (#1513)\\n- Fallback Image added for Plays @Abhishek-90 (#1510)\\n- Remove fixed widths of flex @Shivam-Katare (#1509)\\n\\n## 🧰 Maintenance\\n\\n- Screen Css issue at both mobile and desktop view #1494 @RanaZaeem0 (#1503)\\n","draft":true,"prerelease":false,"make_latest":"true","name":"v1.0.5 🌈","tag_name":"v1.0.5","target_commitish":"refs/pull/1544/merge"}',
request: {}
},
event: {
id: '11275889889',
name: 'pull_request',
payload: {
action: 'synchronize',
after: 'eeaa238885e738cb9cfe874507407a49883b3bb0',
before: '2873998a162474d09bb8ebcd989317ee1057d657',
number: 1544,
organization: {
avatar_url: 'https://avatars.githubusercontent.com/u/106463282?v=4',
description: 'An Opensource platform for React developers to learn, create and share ReactJS Projects. ',
events_url: 'https://api.github.com/orgs/reactplay/events',
hooks_url: 'https://api.github.com/orgs/reactplay/hooks',
id: 106463282,
issues_url: 'https://api.github.com/orgs/reactplay/issues',
login: 'reactplay',
members_url: 'https://api.github.com/orgs/reactplay/members{/member}',
node_id: 'O_kgDOBliAMg',
pub
|
update_release_draft
HttpError: Validation Failed: {"resource":"Release","code":"invalid","field":"target_commitish"}
at /home/runner/work/_actions/release-drafter/release-drafter/v6/dist/index.js:8462:21
at process.processTicksAndRejections (node:internal/process/task_queues:95:5)
at async Job.doExecute (/home/runner/work/_actions/release-drafter/release-drafter/v6/dist/index.js:30793:18)
{
name: 'AggregateError',
event: {
id: '11275889889',
name: 'pull_request',
payload: {
action: 'synchronize',
after: 'eeaa238885e738cb9cfe874507407a49883b3bb0',
before: '2873998a162474d09bb8ebcd989317ee1057d657',
number: 1544,
organization: {
avatar_url: 'https://avatars.githubusercontent.com/u/106463282?v=4',
description: 'An Opensource platform for React developers to learn, create and share ReactJS Projects. ',
events_url: 'https://api.github.com/orgs/reactplay/events',
hooks_url: 'https://api.github.com/orgs/reactplay/hooks',
id: 106463282,
issues_url: 'https://api.github.com/orgs/reactplay/issues',
login: 'reactplay',
members_url: 'https://api.github.com/orgs/reactplay/members{/member}',
node_id: 'O_kgDOBliAMg',
public_members_url: 'https://api.github.com/orgs/reactplay/public_members{/member}',
repos_url: 'https://api.github.com/orgs/reactplay/repos',
url: 'https://api.github.com/orgs/reactplay'
},
pull_request: {
_links: {
comments: {
href: 'https://api.github.com/repos/reactplay/react-play/issues/1544/comments'
},
commits: {
href: 'https://api.github.com/repos/reactplay/react-play/pulls/1544/commits'
},
html: { href: 'https://github.com/reactplay/react-play/pull/1544' },
issue: {
href: 'https://api.github.com/repos/reactplay/react-play/issues/1544'
},
review_comment: {
href: 'https://api.github.com/repos/reactplay/react-play/pulls/comments{/number}'
},
review_comments: {
href: 'https://api.github.com/repos/reactplay/react-play/pulls/1544/comments'
},
self: {
href: 'https://api.github.com/repos/reactplay/react-play/pulls/1544'
},
statuses: {
href: 'https://api.github.com/repos/reactplay/react-play/statuses/eeaa238885e738cb9cfe874507407a49883b3bb0'
}
},
active_lock_reason: null,
additions: 3,
assignee: {
avatar_url: 'https://avatars.githubusercontent.com/u/88102392?v=4',
events_url: 'https://api.github.com/users/priyankarpal/events{/privacy}',
followers_url: 'https://api.github.com/users/priyankarpal/followers',
following_url: 'https://api.github.com/users/priyankarpal/following{/other_user}',
gists_url: 'https://api.github.com/users/priyankarpal/gists{/gist_id}',
gravatar_id: '',
html_url: 'https://github.com/priyankarpal',
id: 88102392,
login: 'priyankarpal',
node_id: 'MDQ6VXNlcjg4MTAyMzky',
organizations_url: 'https://api.github.com/users/priyankarpal/orgs',
received_events_url: 'https://api.github.com/users/priyankarpal/received_events',
repos_url: 'https://api.github.com/users/priyankarpal/repos',
site_admin: false,
starred_url: 'https://api.github.com/users/priyankarpal/starred{/owner}{/repo}',
subscriptions_url: 'https://api.github.com/users/priyankarpal/subscriptions',
type: 'User',
url: 'https://api.github.com/users/priyankarpal'
},
assignees: [
{
avatar_url: 'https://avatars.githubusercontent.com/u/88102392?v=4',
events_url: 'https://api.github.com/users/priyankarpal/events{/privacy}',
followers_url: 'https://api.github.com/users/priyankarpal/followers',
following_url: 'https://api.github.com/users/priyankarpal/following{/other_user}',
|