From 01e6ae43d00e0b4103e691d46173a7e06f235b35 Mon Sep 17 00:00:00 2001
From: Dave Pearson <davep@davep.org>
Date: Fri, 6 Jan 2023 06:43:41 +0000
Subject: [PATCH] Sanitise issue titles before running suggest on them

Applying
https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions#using-an-intermediate-environment-variable
to #1472.
---
 .github/workflows/new_issue.yml | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/new_issue.yml b/.github/workflows/new_issue.yml
index 9b6665ec5..a4f561eed 100644
--- a/.github/workflows/new_issue.yml
+++ b/.github/workflows/new_issue.yml
@@ -14,7 +14,9 @@ jobs:
       - name: Install FAQtory
         run: pip install FAQtory
       - name: Run Suggest
-        run: faqtory suggest "${{ github.event.issue.title }}" > suggest.md
+        env:
+          TITLE: ${{ github.event.issue.title }}
+        run: faqtory suggest "$TITLE" > suggest.md
       - name: Read suggest.md
         id: suggest
         uses: juliangruber/read-file-action@v1