21569348028
88%

Ran 01 Feb 2026 08:36PM UTC

Jobs 1

Files 897

Run time 2min

Badge

Embed ▾

Committed 01 Feb 2026 07:39PM UTC coverage: 87.951% (-0.02%) from 87.972%

Build # 21569348028

Build Type

push

github

Committed by

web-flow

Commit Message

Avoid potential code injection in backport action (#15630)

In theory, if the Mergify bot were to go rogue, it could use a branch
name with arbitrary command execution in it and hijack our action.  In
practice, this isn't a security threat because a) the action is already
limited to running on Mergify's branches only and b) Mergify can push
entirely arbitrary code to its branches anyway, so it can do whatever
arbitrary code execution it likes without needing to go via an
injection.

Still though, this makes static-analysis tools happier.

Run Details

99996 of 113695 relevant lines covered (87.95%)

1161924.83 hits per line

Uncovered Existing Lines

Lines	Coverage	∆	File
1	96.02	-0.18%	crates/transpiler/src/passes/unitary_synthesis/decomposers.rs
9	91.52	-1.54%	crates/qasm2/src/lex.rs
18	96.68	-1.42%	crates/qasm2/src/parse.rs

Jobs

ID	Job ID	Ran	Files	Coverage
1	21569348028.1	01 Feb 2026 08:36PM UTC	897	87.95	GitHub Action Run

Qiskit / qiskit / 21569348028
88%

README BADGES
x

Markdown

Textile

RDoc

HTML

Rst

Uncovered Existing Lines

Jobs

Source Files on build 21569348028

Qiskit / qiskit / 21569348028 88%

README BADGES x

Markdown

Textile

RDoc

HTML

Rst

Uncovered Existing Lines

Jobs

Source Files on build 21569348028

Qiskit / qiskit / 21569348028
88%

README BADGES
x