๊ด‘๊ณ [ For iPhone / iPad ] ๐Ÿ”ฅ Nugget์˜ ๋ฏฟ์„ ์ˆ˜ ์—†๋Š” ์ธํ„ฐ๋ž™ํ‹ฐ๋ธŒ ์›”ํŽ˜์ดํผ. ์ด๋Ÿฐ ๊ฒƒ์€ ๋ณธ ์ ์ด ์—†์„ ๊ฒƒ์ž…๋‹ˆ๋‹ค!
skills.homes logoskills.homescapability registry
home/categories/cicd/adaptive-enforcement-lab-claude-skills-skills-secure-action-pinning-overview-skill-md
cd ..
cicddevops

action-pinning-overview

Why pinning GitHub Actions to SHA-256 commits matters for supply chain security. Attack vectors from unpinned actions and comparison of tag vs SHA pinning.

์†Œ์Šค ๋ณด๊ธฐcicd
adaptive-enforcement-lab
maintainer
adaptive-enforcement-lab
์—…๋ฐ์ดํŠธ๋จ 1/5/2026
์Šคํƒ€
0
ํฌํฌ
1
quick start

Installation and usage

Why pinning GitHub Actions to SHA-256 commits matters for supply chain security. Attack vectors from unpinned actions and comparison of tag vs SHA pinning.

์„ค์น˜
$ install --globalskills.sh
์‚ฌ์šฉ๋ฒ•

์„ค์น˜ ํ›„ ํ„ฐ๋ฏธ๋„์—์„œ ๋‹ค์Œ ๋ช…๋ น์„ ์‹คํ–‰ํ•˜์—ฌ ์ด ์Šคํ‚ฌ์„ ์‚ฌ์šฉํ•  ์ˆ˜ ์žˆ์Šต๋‹ˆ๋‹ค:

skills use action-pinning-overview