Command Injection

@saagie/sdk is vulnerable to command injection. An attacker is able to retrieve the secret tokens via injecting arbitrary commands into the bash scripts through closeissue.yml and createissue.yml...