Issue 2070: Github: Widespread injection vulnerabilities in Actions — Example how env could be used to disclose information