Skip to content

Potential fix for code scanning alert no. 6: Incomplete string escaping or encoding#2

Draft
moonrager13 wants to merge 2 commits into
mainfrom
alert-autofix-6
Draft

Potential fix for code scanning alert no. 6: Incomplete string escaping or encoding#2
moonrager13 wants to merge 2 commits into
mainfrom
alert-autofix-6

Conversation

@moonrager13

Copy link
Copy Markdown
Owner

Potential fix for https://github.com/moonrager13/execution-apis/security/code-scanning/6

Use a complete escaping routine for frontmatter string values by escaping backslashes first, then quotes globally.

Best fix in this snippet: update escapeFrontmatter in scripts/sync-release-note.js so it performs two global replacements in the correct order:

  1. \\\
  2. "\"

This preserves existing functionality (still escapes quotes) while fixing the incomplete escaping issue reported by CodeQL.

Suggested fixes powered by Copilot Autofix. Review carefully before merging.

moonrager13 and others added 2 commits July 5, 2026 20:18
…ng or encoding

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
@moonrager13 moonrager13 self-assigned this Jul 6, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant