From ba5812e64f2291166319bba71591967ba72eb2dd Mon Sep 17 00:00:00 2001
From: Henry Mercer <henrymercer@github.com>
Date: Mon, 7 Aug 2023 17:29:12 +0100
Subject: [PATCH] Add `ImageVersion` to safe env vars for default setup

---
 queries/default-setup-environment-variables.ql | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/queries/default-setup-environment-variables.ql b/queries/default-setup-environment-variables.ql
index a65f9d138..750f390d1 100644
--- a/queries/default-setup-environment-variables.ql
+++ b/queries/default-setup-environment-variables.ql
@@ -22,8 +22,8 @@ predicate isSafeForDefaultSetup(string envVar) {
       "GITHUB_ACTION_REF", "GITHUB_ACTION_REPOSITORY", "GITHUB_ACTOR", "GITHUB_API_URL",
       "GITHUB_BASE_REF", "GITHUB_EVENT_NAME", "GITHUB_JOB", "GITHUB_RUN_ATTEMPT", "GITHUB_RUN_ID",
       "GITHUB_SHA", "GITHUB_REPOSITORY", "GITHUB_SERVER_URL", "GITHUB_TOKEN", "GITHUB_WORKFLOW",
-      "GITHUB_WORKSPACE", "GOFLAGS", "JAVA_TOOL_OPTIONS", "RUNNER_ARCH", "RUNNER_NAME", "RUNNER_OS",
-      "RUNNER_TEMP", "RUNNER_TOOL_CACHE"
+      "GITHUB_WORKSPACE", "GOFLAGS", "ImageVersion", "JAVA_TOOL_OPTIONS", "RUNNER_ARCH",
+      "RUNNER_NAME", "RUNNER_OS", "RUNNER_TEMP", "RUNNER_TOOL_CACHE"
     ]
 }