Fixed bug with format injection (#615)

Author: Zabuzard

application/src/main/java/org/togetherjava/tjbot/commands/help/AskCommand.java

@@ -136,10 +136,11 @@ private RestAction<Message> sendInitialMessage(Guild guild, ThreadChannel thread
             .map(role -> " (%s)".formatted(role.getAsMention()))
             .orElse("");
 
-        String contentPattern = "%s has a question about '**%s**'%%s and will send the details now."
-            .formatted(author.getAsMention(), title);
-        String contentWithoutRole = contentPattern.formatted("");
-        String contentWithRole = contentPattern.formatted(roleMentionDescription);
+        String contentPrefix =
+                "%s has a question about '**%s**'".formatted(author.getAsMention(), title);
+        String contentSuffix = " and will send the details now.";
+        String contentWithoutRole = contentPrefix + contentSuffix;
+        String contentWithRole = contentPrefix + roleMentionDescription + contentSuffix;
 
         // We want to invite all members of a role, but without hard-pinging them. However,
         // manually inviting them is cumbersome and can hit rate limits.