From b342595da6fd27303a26ebfb657866cad4c23c4d Mon Sep 17 00:00:00 2001
From: q9i <46249765+quantum9Innovation@users.noreply.github.com>
Date: Sun, 3 Mar 2024 18:43:24 -0800
Subject: [PATCH] chore: add deepcode ignore comment for
 IndirectCommandInjection in execSync call

---
 scripts/zenodo.ts | 1 +
 1 file changed, 1 insertion(+)

diff --git a/scripts/zenodo.ts b/scripts/zenodo.ts
index a73f357..ab064ac 100644
--- a/scripts/zenodo.ts
+++ b/scripts/zenodo.ts
@@ -9,6 +9,7 @@ const run = (cmd: string): string | Buffer => {
   try {
     // sanitize user input before running to prevent arbitrary code execution
     cmd = shellescape(cmd.split(' '))
+    // deepcode ignore IndirectCommandInjection: fixed in #36
     const output = execSync(cmd, { stdio: 'pipe' })
     return output
   } catch (error) {