From e30121cae22ad6b9d39bb8d5ee57d1a1be3eb086 Mon Sep 17 00:00:00 2001
From: Felix Stupp <felix.stupp@outlook.com>
Date: Tue, 9 Jun 2020 15:56:40 +0200
Subject: [PATCH] git_auto_update: Improved comparism with GPG fingerprint

Configured grep to compare againg fixed strings, not regexp
---
 roles/git_auto_update/templates/update.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/roles/git_auto_update/templates/update.sh b/roles/git_auto_update/templates/update.sh
index 0c1dec5..536e252 100644
--- a/roles/git_auto_update/templates/update.sh
+++ b/roles/git_auto_update/templates/update.sh
@@ -20,7 +20,7 @@ fi
 
 git fetch --tags > /dev/null;
 TAG=$(git tag --list | grep "^$PREFIX" | sort -r | head -n 1);
-if [ -z "$GPG_FINGERPRINT" ] || (git verify-tag --raw "$TAG" 2>&1 | grep " VALIDSIG $GPG_FINGERPRINT ") > /dev/null; then
+if [ -z "$GPG_FINGERPRINT" ] || (git verify-tag --raw "$TAG" 2>&1 | grep --fixed-strings " VALIDSIG $GPG_FINGERPRINT ") > /dev/null; then
   git reset --hard;
   git checkout -q "$TAG";
   chown -R "$DEST_USER:$DEST_GROUP" .;