Protect env vars in Twine invocation

This commit is contained in:
Sviatoslav Sydorenko 2019-08-23 13:17:10 +02:00 committed by GitHub
parent 4820c8c9b0
commit 8e9ff975ca
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -1,7 +1,7 @@
#! /usr/bin/env bash
set -Eeuo pipefail
TWINE_USERNAME=$INPUT_USER \
TWINE_PASSWORD=$INPUT_PASSWORD \
TWINE_REPOSITORY_URL=$INPUT_REPOSITORY_URL \
TWINE_USERNAME="$INPUT_USER" \
TWINE_PASSWORD="$INPUT_PASSWORD" \
TWINE_REPOSITORY_URL="$INPUT_REPOSITORY_URL" \
exec twine upload dist/*