CVE-2021-41087 (Medium) detected in github.com/in-toto/in-toto-golang-v0.2.1-0.20210627200632-886210ae2ab9 #79

	name: Greetings

	on: [pull_request_target, issues]

	jobs:
	greeting:
	runs-on: ubuntu-latest
	permissions:
	issues: write
	pull-requests: write
	steps:
	- uses: actions/first-interaction@v1
	with:
	repo-token: ${{ secrets.GITHUB_TOKEN }}
	issue-message: "Message that will be displayed on users' first issue"
	pr-message: "Message that will be displayed on users' first pull request"

Provide feedback