chore(deps): update anthropics/claude-code-action action to v1.0.77#503
Merged
olivermeyer merged 1 commit intomainfrom Mar 23, 2026
Merged
chore(deps): update anthropics/claude-code-action action to v1.0.77#503olivermeyer merged 1 commit intomainfrom
olivermeyer merged 1 commit intomainfrom
Conversation
renovate
bot
added
bot
renovate
bot
requested a review
from helmut-hoffer-von-ankershoffen
as a code owner
renovate
bot
force-pushed
the
renovate/github-actions
branch
from
f28963b to
4489923
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/github-actions
branch
from
4489923 to
3c650d7
Compare
|
olivermeyer
approved these changes
Mar 23, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v1.0.75→v1.0.77Release Notes
anthropics/claude-code-action (anthropics/claude-code-action)
v1.0.77Compare Source
Subprocess environment scrubbing for untrusted-input workflows
Workflows that configure
allowed_non_write_usersnow automatically getCLAUDE_CODE_SUBPROCESS_ENV_SCRUB=1, which makes Claude Code (v2.1.79+) strip Anthropic and cloud provider credentials from the environment of subprocesses it spawns (Bash tool, hooks, MCP stdio servers). The parent Claude process keeps these vars for its own API calls — only child subprocess environments are scrubbed.Why: Workflows that process untrusted input (issue triage, PR review from non-write users) are exposed to prompt injection. A malicious issue body could trick Claude into running a Bash command that reads
$ANTHROPIC_API_KEYvia shell expansion and leaks it through an observable side channel. Scrubbing the subprocess environment removes the read primitive entirely.What's scrubbed: Anthropic auth tokens, cloud provider credentials, GitHub Actions OIDC and runtime tokens, OTEL auth headers.
What's kept:
GITHUB_TOKEN/GH_TOKEN— so wrapper scripts can still call the GitHub API.Opt out: Set
CLAUDE_CODE_SUBPROCESS_ENV_SCRUB: "0"at the job or step level if your workflow legitimately needs a subprocess to inherit these credentials.No action required for most users — if you've configured
allowed_non_write_users, scrubbing is now on automatically. If your workflow breaks because a subprocess expected inherited credentials, re-inject them explicitly (e.g., via MCP serverenv:config) or use the opt-out.What's Changed
Full Changelog: anthropics/claude-code-action@v1.0.76...v1.0.77
v1.0.76Compare Source
Full Changelog: anthropics/claude-code-action@v1...v1.0.76
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.