Secure Your GitHub Actions with StepSecurity

Secure Workflow
Secure Repo
Pull Requests

Apply Security Best Practices

Restrict permissions for GITHUB_TOKEN

Add security agent for GitHub-hosted runner

Pin actions to a full length commit SHA