From d61b5e135f6679354ec51376d25ec2af8ce86e35 Mon Sep 17 00:00:00 2001
From: Jan Prochazka <prochazka@sprinx.cz>
Date: Tue, 1 Oct 2024 12:17:25 +0200
Subject: [PATCH] safer env vars in dbmodel connection

---
 packages/api/src/utility/connectUtility.js | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/packages/api/src/utility/connectUtility.js b/packages/api/src/utility/connectUtility.js
index a1c997191..a8485261a 100644
--- a/packages/api/src/utility/connectUtility.js
+++ b/packages/api/src/utility/connectUtility.js
@@ -37,8 +37,8 @@ async function loadConnection(driver, storedConnection, connectionMode) {
 
   if (allowConnectionFromEnvVariables) {
     return _.mapValues(storedConnection, (value, key) => {
-      if (_.isString(value) && value.startsWith('$')) {
-        return process.env[value.substring(1)];
+      if (_.isString(value) && value.startsWith('${') && value.endsWith('}')) {
+        return process.env[value.slice(2, -1)];
       }
       return value;
     });