Anyone can use GitHub Actions in their workflows, which is awesome. Follow a few best practices when authoring a workflow to improve its security posture and contribute to a better ecosystem. https://github.blog/2023-11-16-security-best-practices-for-authors-of-github-actions/

https://twitter.com/github/status/1725268254694707218