orcs-code

Files

Juan Camilo 3ca6c299d6 security: pin GitHub Actions to immutable SHA digests

Pin all GitHub Actions to commit SHA instead of mutable version tags
to prevent supply chain attacks via tag poisoning. This is especially
important for third-party actions like oven-sh/setup-bun.

2026-04-02 11:09:19 +02:00

pr-checks.yml

security: pin GitHub Actions to immutable SHA digests

2026-04-02 11:09:19 +02:00