we need to update the Github Actions CI pipelines to follow industry and organization best practices. This includes but is not limited to using commit locked versions of third-party actions, using self-hosted runners with advanced security, and adding explicit permissions to each workflow.
we need to update the Github Actions CI pipelines to follow industry and organization best practices. This includes but is not limited to using commit locked versions of third-party actions, using self-hosted runners with advanced security, and adding explicit permissions to each workflow.