From df3f8f7cb5d5717f9fbbbcd643ff28c263117ebd Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alexis=20M=C3=A9taireau?= <alexis@freedom.press>
Date: Mon, 8 Jul 2024 20:48:27 +0200
Subject: [PATCH] Do not allow uploading the token as an asset

---
 dev_scripts/upload-asset.py | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/dev_scripts/upload-asset.py b/dev_scripts/upload-asset.py
index 1b7fce9..993a0c8 100755
--- a/dev_scripts/upload-asset.py
+++ b/dev_scripts/upload-asset.py
@@ -104,6 +104,8 @@ def main():
 
     if args.token:
         log.debug(f"Reading token from {args.token}")
+        # Ensure we are not uploading the token as an asset
+        assert args.file != args.token
         with open(args.token) as f:
             token = f.read().strip()
     else: