3 docs tagged with "ci-cd"

This page is missing probably a lot of content. You can help contributing to it.

GitHub Actions workflows fetch third-party actions from GitHub repositories. Each uses: reference is a dependency — and like npm packages, actions can be compromised, typosquatted, or modified after the version tag you referenced was originally pinned. This page covers the risks and how to address them.

GitHub Packages provides an npm registry tightly integrated with your GitHub repositories. It's ideal for organization-internal packages and packages tied to specific repos.