From 908f8d67b3ac5e6c0bfbb53b7ea01517a8ec099b Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Mon, 15 Dec 2025 14:29:05 +0000
Subject: [PATCH] fix: prevent command injection in format workflow by using
 environment variable

Co-authored-by: gcatanese <1771700+gcatanese@users.noreply.github.com>
---
 .github/workflows/format.yml | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/format.yml b/.github/workflows/format.yml
index c777d86e0..ee52dc1ad 100644
--- a/.github/workflows/format.yml
+++ b/.github/workflows/format.yml
@@ -36,9 +36,11 @@ jobs:
         run: mvn spotless:apply
 
       - name: Commit and Push Changes
+        env:
+          BOT_EMAIL: ${{ secrets.ADYEN_AUTOMATION_BOT_EMAIL }}
         run: |
           git config user.name AdyenAutomationBot
-          git config user.email "${{ secrets.ADYEN_AUTOMATION_BOT_EMAIL }}"
+          git config user.email "$BOT_EMAIL"
           git add .
           if git diff --cached --quiet; then
             echo "No changes to commit."