From c0a8eb9a67638fadc0cd95fc3ffc7c6750160d13 Mon Sep 17 00:00:00 2001
From: Angela P Wen <angelapwen@github.com>
Date: Mon, 24 Feb 2025 12:35:51 -0800
Subject: [PATCH] Use `$RUNNER_TEMP` for good measure

`runner.temp` is not user-controlled but we replace it with `$RUNNER_TEMP` in any case.
---
 .github/actions/check-codescanning-config/action.yml | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/.github/actions/check-codescanning-config/action.yml b/.github/actions/check-codescanning-config/action.yml
index a02d8b42f..d30113b34 100644
--- a/.github/actions/check-codescanning-config/action.yml
+++ b/.github/actions/check-codescanning-config/action.yml
@@ -62,13 +62,11 @@ runs:
     - name: Check config
       working-directory: ${{ github.action_path }}
       shell: bash
-      run: ts-node ./index.ts "${{ runner.temp }}/user-config.yaml" '$EXPECTED_CONFIG_FILE_CONTENTS'
+      run: ts-node ./index.ts "$RUNNER_TEMP/user-config.yaml" '$EXPECTED_CONFIG_FILE_CONTENTS'
 
     - name: Clean up
       shell: bash
       if: always()
       run: |
-        rm -rf ${{ runner.temp }}/codescanning-config-cli-test
-        rm -rf ${{ runner.temp }}/user-config.yaml
         rm -rf $RUNNER_TEMP/codescanning-config-cli-test
         rm -rf $RUNNER_TEMP/user-config.yaml