From 7040b68bd91ad0866e08c80bbd2cb755052347f3 Mon Sep 17 00:00:00 2001
From: orbisai0security <orbisai0security@users.noreply.github.com>
Date: Sat, 7 Feb 2026 05:12:02 +0000
Subject: [PATCH] fix: resolve high vulnerability
 yaml.github-actions.security.run-shell-injection.run-shell-injection

Automatically generated security fix
---
 .github/workflows/python.yml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/python.yml b/.github/workflows/python.yml
index 55aee2c8..281af239 100644
--- a/.github/workflows/python.yml
+++ b/.github/workflows/python.yml
@@ -243,11 +243,12 @@ jobs:
       - name: Set build number to ${{ inputs.build }}
         env:
           SOURCE_DATE_EPOCH: ${{ env.timestamp }}
+          BUILD_NUMBER: ${{ inputs.build }}
         run: |
           mkdir -p dist
           for WHL in */google_re2-*.whl; do
             python -m wheel unpack "${WHL}"
-            python -m wheel pack --dest-dir=dist --build-number=${{ inputs.build }} google_re2-*
+            python -m wheel pack --dest-dir=dist --build-number="${BUILD_NUMBER}" google_re2-*
             rm -rf google_re2-*
           done
         shell: bash