From cf7b4b015e470568582ae77d9386c86e75778ade Mon Sep 17 00:00:00 2001
From: Jordan Ritter <jpr5@darkridge.com>
Date: Mon, 18 May 2026 11:16:20 -0700
Subject: [PATCH 1/2] fix: Security: Fix 1 finding in GitHub Actions workflows

---
 .github/workflows/status-page.yml | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/status-page.yml b/.github/workflows/status-page.yml
index 09a874e4c626..6caa383c7e57 100644
--- a/.github/workflows/status-page.yml
+++ b/.github/workflows/status-page.yml
@@ -24,9 +24,11 @@ jobs:
       - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.3.1
       - name: Add progress comment to cherry-pick issue for Stable and LTS
         if: github.event_name == 'issues' && github.event.action == 'opened'
+        env:
+            GH_ACTOR: ${{ github.actor }}
         run: |
           npm ci
-          node ./build-system/status-page/comment.js ${{ github.event.issue.number }} ${{ github.actor }}
+          node ./build-system/status-page/comment.js ${{ github.event.issue.number }} $GH_ACTOR
         env:
           BODY: ${{ github.event.issue.body }}
           GITHUB_TOKEN: ${{ secrets.AMPPROJECTBOT }}

From f4ed9dd300bb0c34d65df55bb109c33fdfa0aecf Mon Sep 17 00:00:00 2001
From: Jordan Ritter <jpr5@darkridge.com>
Date: Mon, 18 May 2026 11:38:26 -0700
Subject: [PATCH 2/2] fix: correct YAML generation issues

---
 .github/workflows/status-page.yml | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/status-page.yml b/.github/workflows/status-page.yml
index 6caa383c7e57..603f3d160644 100644
--- a/.github/workflows/status-page.yml
+++ b/.github/workflows/status-page.yml
@@ -25,13 +25,12 @@ jobs:
       - name: Add progress comment to cherry-pick issue for Stable and LTS
         if: github.event_name == 'issues' && github.event.action == 'opened'
         env:
-            GH_ACTOR: ${{ github.actor }}
+          GH_ACTOR: ${{ github.actor }}
+          BODY: ${{ github.event.issue.body }}
+          GITHUB_TOKEN: ${{ secrets.AMPPROJECTBOT }}
         run: |
           npm ci
           node ./build-system/status-page/comment.js ${{ github.event.issue.number }} $GH_ACTOR
-        env:
-          BODY: ${{ github.event.issue.body }}
-          GITHUB_TOKEN: ${{ secrets.AMPPROJECTBOT }}
       - name: Sync status page with cherry-pick progress
         if: github.event_name == 'issue_comment' && github.event.action == 'edited' && contains(github.event.comment.body, '🌸 Cherry-pick Progress 🌸')
         run: |