CodeQL library for GitHub Actions
codeql/actions-all 0.4.12 (changelog, source)
Search

Predicate Bash::cmdReachingGitHubFileWrite

Holds if the Run scripts contains a command substitution (cmd) which output may get appended to the GITHUB_XXX special file

Import path

import actions
predicate cmdReachingGitHubFileWrite(BashShellScript script, string cmd, string file_var, string field)