From 71832066ead69f47442034480277fc84d884bcc5 Mon Sep 17 00:00:00 2001
From: orbisai0security <mediratta01.pally@gmail.com>
Date: Wed, 29 Apr 2026 04:24:05 +0000
Subject: [PATCH] fix: V-001 security vulnerability

Automated security fix generated by Orbis Security AI
---
 scripts/backfill-duplicate-comments.ts | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/scripts/backfill-duplicate-comments.ts b/scripts/backfill-duplicate-comments.ts
index f79ab43160..69a1cae072 100644
--- a/scripts/backfill-duplicate-comments.ts
+++ b/scripts/backfill-duplicate-comments.ts
@@ -72,7 +72,7 @@ async function triggerDedupeWorkflow(
 async function backfillDuplicateComments(): Promise<void> {
   console.log("[DEBUG] Starting backfill duplicate comments script");
 
-  const token = process.env.GITHUB_TOKEN;
+  const token = process.env.GITHUB_TOKEN?.trim();
   if (!token) {
     throw new Error(`GITHUB_TOKEN environment variable is required
 
@@ -84,7 +84,7 @@ Environment Variables:
   DRY_RUN - Set to "false" to actually trigger workflows (default: true for safety)
   MAX_ISSUE_NUMBER - Only process issues with numbers less than this value (default: 4050)`);
   }
-  console.log("[DEBUG] GitHub token found");
+  console.log("[DEBUG] GitHub token present");
 
   const owner = "anthropics";
   const repo = "claude-code";