krata icon indicating copy to clipboard operation
krata copied to clipboard
verified publisher icon edera-dev

chore: pin actions to digests and introduce step security hardened runners

Open jedsalazar opened this issue 1 year ago • 1 comments

Pin GitHub Actions to a digest to prevent supply chain attacks. Adds Step Security Github Actions Harden Runner agent, which monitors for least privilege GITHUB_TOKEN permissions and egress connections. More info here

jedsalazar avatar May 07 '24 18:05 jedsalazar

ooh nice!

azenla avatar May 07 '24 18:05 azenla