CodeCow/zulip
1
0
Fork 0
mirror of https://github.com/zulip/zulip.git synced 2026-06-03 21:01:43 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

closed-by-commit: Broaden validation of Github secret tokens.

Browse Source
This commit is contained in:
Alex Vandiver 2025-11-20 15:35:03 +00:00 committed by Alex Vandiver
parent 9806c74cb0
commit 8c97cf9cd0
1 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
tools/closed-by-commits
View File

@ -369,9 +369,12 @@ class CommitRangeAnalyzer:
def validate_github_token(value: str) -> str:
if not value.startswith("github_"):
raise typer.BadParameter("Github access tokens start with `github_`")
return value
# https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/about-authentication-to-github#githubs-token-formats
if value.startswith("github_"):
return value
if re.match(r"gh[pousr]_", value):
return value
raise typer.BadParameter("Github access tokens start with `github_`, or `gh`")
from enum import Enum