chore(deps): bump github/codeql-action from 4.32.6 to 4.33.0

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.32.6 to 4.33.0. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](0d579ffd05...b1bff81932) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.33.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
chore(deps): bump actions/download-artifact from 8.0.0 to 8.0.1 (#2824 )
2026-03-19 18:24:51 +00:00 · 2026-03-19 12:23:35 -06:00 · 2026-03-12 20:10:36 -06:00 · 2026-03-07 19:16:40 +00:00 · 2026-03-07 12:05:45 -07:00 · 2026-03-07 12:05:29 -07:00
37 changed files with 8110 additions and 5794 deletions
--- a/.all-contributorsrc
+++ b/.all-contributorsrc
@@ -254,6 +254,34 @@
      "contributions": [
        "code"
      ]
    },
    {
      "login": "RajendraP",
      "name": "Rajendra Pandey",
      "avatar_url": "https://avatars.githubusercontent.com/u/8928165?v=4",
      "profile": "https://github.com/RajendraP",
      "contributions": [
        "doc"
      ]
    },
    {
      "login": "undefined-moe",
      "name": "undefined",
      "avatar_url": "https://avatars.githubusercontent.com/u/29992205?v=4",
      "profile": "https://undefined.moe/",
      "contributions": [
        "doc"
      ]
    },
    {
      "login": "Jellyfrog",
      "name": "Jellyfrog",
      "avatar_url": "https://avatars.githubusercontent.com/u/759887?v=4",
      "profile": "https://github.com/Jellyfrog",
      "contributions": [
        "code",
        "doc"
      ]
    }
  ],
  "contributorsPerLine": 7,
--- a/.github/workflows/codacy-analysis.yml
+++ b/.github/workflows/codacy-analysis.yml
@@ -29,12 +29,12 @@ jobs:
    steps:
      # Checkout the repository to the GitHub Actions runner
      - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
      # Execute Codacy Analysis CLI and generate a SARIF output with the security issues identified during the analysis
      - name: Run Codacy Analysis CLI
        continue-on-error: true
-        uses: codacy/codacy-analysis-cli-action@v4.4.5
+        uses: codacy/codacy-analysis-cli-action@562ee3e92b8e92df8b67e0a5ff8aa8e261919c08 # v4.4.7
        with:
          # Check https://github.com/codacy/codacy-analysis-cli#project-token to get your project token from your Codacy repository
          # You can also omit the token and run the tools that support default configurations
@@ -51,6 +51,6 @@ jobs:
      # Upload the SARIF file generated in the previous step
      - name: Upload SARIF results file
        continue-on-error: true
-        uses: github/codeql-action/upload-sarif@v3
+        uses: github/codeql-action/upload-sarif@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v3.29.5
        with:
          sarif_file: results.sarif
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -43,11 +43,11 @@ jobs:
    steps:
    - name: Checkout repository
-      uses: actions/checkout@v4
+      uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
    # Initializes the CodeQL tools for scanning.
    - name: Initialize CodeQL
-      uses: github/codeql-action/init@v3
+      uses: github/codeql-action/init@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v3.29.5
      with:
        languages: ${{ matrix.language }}
        # If you wish to specify custom queries, you can do so here or in a config file.
@@ -61,7 +61,7 @@ jobs:
    # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
    # If this step fails, then you should remove it and run the build manually (see below)
    - name: Autobuild
-      uses: github/codeql-action/autobuild@v3
+      uses: github/codeql-action/autobuild@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v3.29.5
    # ℹ️ Command-line programs to run using the OS shell.
    # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
@@ -74,6 +74,6 @@ jobs:
    #   ./location_of_script_within_repo/buildscript.sh
    - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@v3
+      uses: github/codeql-action/analyze@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v3.29.5
      with:
        category: "/language:${{matrix.language}}"
--- a/.github/workflows/greetings.yml
+++ b/.github/workflows/greetings.yml
@@ -1,18 +0,0 @@
 name: Greetings
 on: [pull_request_target, issues]
 permissions:
  pull-requests: write
  issues: write
 jobs:
  greeting:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/first-interaction@v1
        continue-on-error: true
        with:
          repo-token: ${{ secrets.PAT_TOKEN }}
          issue-message: "Thanks for reporting this issue, don't forget to star this project if you haven't already to help us reach a wider audience."
          pr-message: "Thanks for implementing a fix, could you ensure that the test covers your changes if applicable."
--- a/.github/workflows/issue-comment-job-example.yml
+++ b/.github/workflows/issue-comment-job-example.yml
@@ -19,7 +19,7 @@ jobs:
          NUMBER: ${{ github.event.issue.number }}
      - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          submodules: true
          fetch-depth: 0
@@ -104,7 +104,7 @@ jobs:
          NUMBER: ${{ github.event.issue.number }}
      - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          submodules: true
          fetch-depth: 0
--- a/.github/workflows/manual-triggered-job-example.yml
+++ b/.github/workflows/manual-triggered-job-example.yml
@@ -5,6 +5,12 @@ permissions:
 on:
  workflow_dispatch:
    inputs:
      files:
        required: false
        type: string
        default: |
          **.md **/**.md test/*.txt
 jobs:
  test:
@@ -18,7 +24,7 @@ jobs:
    steps:
      - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          submodules: true
          fetch-depth: 0
@@ -35,8 +41,8 @@ jobs:
        id: changed-files-glob
        uses: ./
        with:
-          files: |
+          files: ${{ inputs.files }}
-            test/*.txt
+          files_separator: " "  # Space delimited files (default is "\n")
      - name: Show output
        run: |
--- a/.github/workflows/matrix-example.yml
+++ b/.github/workflows/matrix-example.yml
@@ -17,7 +17,7 @@ jobs:
      matrix: ${{ steps.changed-files.outputs.all_changed_files }}
    steps:
      - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          fetch-depth: 0
      - name: Get changed files
@@ -39,7 +39,19 @@ jobs:
      fail-fast: false
    steps:
      - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
      - name: Test
        run: |
          echo ${{ matrix.files }}
  conditional-job:
    name: Run Conditional Job
    runs-on: ubuntu-latest
    needs: [changed-files]
    if: contains(needs.changed-files.outputs.matrix, 'README.md') # Conditional check for README
    steps:
      - name: Checkout
        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
      - name: Execute Conditional Logic
        run: |
          echo "README.md has been changed. Running conditional job."
--- a/.github/workflows/multi-job-example.yml
+++ b/.github/workflows/multi-job-example.yml
@@ -19,7 +19,7 @@ jobs:
      all_changed_files: ${{ steps.changed-files.outputs.all_changed_files }}
    steps:
      - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          fetch-depth: 0
      - name: Get changed files
@@ -45,7 +45,7 @@ jobs:
      all_changed_files: ${{ steps.changed-files.outputs.all_changed_files }}
    steps:
      - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          fetch-depth: 0
      - name: Get changed files
--- a/.github/workflows/sync-release-version.yml
+++ b/.github/workflows/sync-release-version.yml
@@ -13,21 +13,22 @@ jobs:
  update-version:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          fetch-depth: 0
      - name: Run release-tagger
-        uses: tj-actions/release-tagger@v4
+        uses: tj-actions/release-tagger@970a1f5f827a7b90902b0adc904f3bb70c1074e7 # v6.0.6
      - name: Sync release version.
-        uses: tj-actions/sync-release-version@v13
+        uses: tj-actions/sync-release-version@2a7ef0deb39b3ecce887ee99d2261c6cef989d84 # v13.16
        id: sync-release-version
        with:
          pattern: '${{ github.repository }}@'
          only_major: true
          use_tag_commit_hash: true
          paths: |
            README.md
      - name: Sync release package version.
-        uses: tj-actions/sync-release-version@v13
+        uses: tj-actions/sync-release-version@2a7ef0deb39b3ecce887ee99d2261c6cef989d84 # v13.16
        id: sync-release-package-version
        with:
          pattern: '"version": "'
@@ -35,14 +36,15 @@ jobs:
          paths: |
            package.json
      - name: Run git-cliff
-        uses: tj-actions/git-cliff@v1
+        uses: tj-actions/git-cliff@679041f051a4d2ab452f7e5e7b0eed2abee21131 # v2.2.0
      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v6.1.0
+        uses: peter-evans/create-pull-request@c0f553fe549906ede9cf27b5156039d195d2ece0 # v8.1.0
        with:
          base: "main"
          labels: "merge when passing"
          sign-commits: true
          title: "Upgraded to ${{ steps.sync-release-version.outputs.new_version }}"
          branch: "upgrade-to-${{ steps.sync-release-version.outputs.new_version }}"
          commit-message: "Upgraded from ${{ steps.sync-release-version.outputs.old_version }} -> ${{ steps.sync-release-version.outputs.new_version }}"
          body: "View [CHANGES](https://github.com/${{ github.repository }}/compare/${{ steps.sync-release-version.outputs.old_version }}...${{ steps.sync-release-version.outputs.new_version }})"
-          token: ${{ secrets.PAT_TOKEN }}
+          token: ${{ secrets.GITHUB_TOKEN }}
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -35,20 +35,20 @@ jobs:
    outputs:
      files_changed: ${{ steps.changed_files.outputs.files_changed }}
    permissions:
-      contents: read
+      contents: write
-      pull-requests: write
+      pull-requests: read
    steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          persist-credentials: false
          fetch-depth: 0
          repository: ${{ github.event.pull_request.head.repo.full_name }}
-      - name: Use Node.js 20.x
+      - name: Use Node.js 24.x
-        uses: actions/setup-node@v4.0.3
+        uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
        with:
          cache: 'yarn'
-          node-version: '20.x'
+          node-version: '24.x'
      - name: Create coverage directory and clover.xml
        run: |
@@ -60,11 +60,11 @@ jobs:
          yarn install
      - name: Run eslint on changed files
-        uses: tj-actions/eslint-changed-files@v25
+        uses: tj-actions/eslint-changed-files@536c35c8184b8bbd361d3703aa63439e0895c340 # v25.3.2
        if: github.event_name == 'pull_request'
        with:
          token: ${{ secrets.PAT_TOKEN }}
          config_path: ".eslintrc.json"
          ignore_path: ".eslintignore"
      - name: Run build and test
        run: |
@@ -72,38 +72,29 @@ jobs:
        env:
          GITHUB_EVENT_PULL_REQUEST_HEAD_REPO_FORK: ${{ github.event.pull_request.head.repo.fork }}
      - name: Upload build assets
        uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
        with:
          name: build-assets
          path: dist
      - name: Verify Changed files
-        uses: tj-actions/verify-changed-files@v20
+        uses: tj-actions/verify-changed-files@a1c6acee9df209257a246f2cc6ae8cb6581c1edf # v20.0.4
-        id: changed_files
+        if: github.actor != 'dependabot[bot]'
        id: verify_changed_files
        with:
          files: |
            src
            dist
-      - name: Commit files
+      - name: Verify outstanding changes
-        if: steps.changed_files.outputs.files_changed == 'true' && github.event_name == 'pull_request'
+        if: steps.verify_changed_files.outputs.files_changed == 'true' && github.event_name == 'pull_request'
        run: |
-          git config --local user.email "action@github.com"
+          echo "Uncommitted build/lint changes detected. Please run 'yarn all' locally and push the changes for review."
-          git config --local user.name "GitHub Action"
+          exit 1
          git add src dist
          git commit -m "Added missing changes and modified dist assets."
      - name: Push changes
        if: steps.changed_files.outputs.files_changed == 'true' && github.event_name == 'pull_request'
        continue-on-error: true
        uses: ad-m/github-push-action@master
        with:
          github_token: ${{ secrets.PAT_TOKEN }}
          branch: ${{ github.head_ref }}
      - name: Upload build assets
        uses: actions/upload-artifact@v4
        with:
          name: build-assets
          path: dist
      - name: Run codacy-coverage-reporter
-        uses: codacy/codacy-coverage-reporter-action@v1
+        uses: codacy/codacy-coverage-reporter-action@89d6c85cfafaec52c72b6c5e8b2878d33104c699 # v1.3.0
        continue-on-error: true
        with:
          project-token: ${{ secrets.CODACY_PROJECT_TOKEN }}
@@ -118,7 +109,7 @@ jobs:
      contents: read
    steps:
      - name: Checkout into dir1
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          repository: ${{ github.event.pull_request.head.repo.full_name }}
          submodules: true
@@ -126,7 +117,7 @@ jobs:
          path: dir1
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
          path: dir1/dist
@@ -152,13 +143,13 @@ jobs:
          bash
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
          path: dir2/dist
      - name: Checkout into dir2
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          repository: ${{ github.event.pull_request.head.repo.full_name }}
          submodules: true
@@ -194,13 +185,13 @@ jobs:
      contents: read
    steps:
      - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          repository: ${{ github.event.pull_request.head.repo.full_name }}
          fetch-depth: 0
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
@@ -254,13 +245,13 @@ jobs:
    steps:
      - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          repository: ${{ github.event.pull_request.head.repo.full_name }}
          fetch-depth: 0
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
@@ -284,6 +275,113 @@ jobs:
        shell:
          bash
  test-skip-same-base-and-commit-sha:
    name: Test changed-files skip same base and commit sha
    runs-on: ubuntu-latest
    needs: build
    if: needs.build.outputs.files_changed != 'true'
    permissions:
      contents: read
    steps:
      - name: Checkout branch
        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          repository: ${{ github.event.pull_request.head.repo.full_name }}
          fetch-depth: 0
      - name: Download build assets
        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
      - name: Get head SHA
        id: head-sha
        run: |
          echo "sha=$(git rev-parse HEAD)" >> "$GITHUB_OUTPUT"
        shell:
          bash
      - name: Run changed-files with same base and commit sha
        id: changed-files
        uses: ./
        with:
          base_sha: ${{ steps.head-sha.outputs.sha }}
          sha: ${{ steps.head-sha.outputs.sha }}
          skip_same_sha: true
      - name: Verify empty outputs
        if: steps.changed-files.outputs.all_changed_files_count != '0' || steps.changed-files.outputs.any_changed != 'false'
        run: |
          echo "Expected empty outputs; got count=${{ steps.changed-files.outputs.all_changed_files_count }} any_changed=${{ steps.changed-files.outputs.any_changed }}"
          exit 1
        shell:
          bash
      - name: Show output
        run: |
          echo '${{ toJSON(steps.changed-files.outputs) }}'
        shell:
          bash
  test-exclude-symlinks:
    name: Test changed-files exclude symlinks
    runs-on: ubuntu-latest
    needs: build
    if: needs.build.outputs.files_changed != 'true'
    permissions:
      contents: read
    steps:
      - name: Checkout branch
        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          repository: ${{ github.event.pull_request.head.repo.full_name }}
          fetch-depth: 0
      - name: Download build assets
        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
      - name: Run changed-files without symlink exclusion
        id: changed-files-symlink-included
        uses: ./
        with:
          base_sha: 2f2f6cf099167fa7d7c6aba8fc0421327e181a5a
          sha: 8c4da285a3cb8b621b4a5cc251d6282b4b0a67a5
      - name: Verify symlink is present
        if: "!contains(steps.changed-files-symlink-included.outputs.added_files, 'test/symlink-to-target')"
        run: |
          echo "Expected symlink to be present in added_files; got ${{ steps.changed-files-symlink-included.outputs.added_files }}"
          exit 1
        shell:
          bash
      - name: Run changed-files excluding symlinks
        id: changed-files-symlink-excluded
        uses: ./
        with:
          base_sha: 2f2f6cf099167fa7d7c6aba8fc0421327e181a5a
          sha: 8c4da285a3cb8b621b4a5cc251d6282b4b0a67a5
          exclude_symlinks: true
      - name: Verify symlink is excluded
        if: "contains(steps.changed-files-symlink-excluded.outputs.added_files, 'test/symlink-to-target') || contains(steps.changed-files-symlink-excluded.outputs.all_changed_files, 'test/symlink-to-target')"
        run: |
          echo "Expected symlink to be excluded; got added=${{ steps.changed-files-symlink-excluded.outputs.added_files }} all=${{ steps.changed-files-symlink-excluded.outputs.all_changed_files }}"
          exit 1
        shell:
          bash
      - name: Show output
        run: |
          echo '${{ toJSON(steps.changed-files-symlink-included.outputs) }}'
          echo '${{ toJSON(steps.changed-files-symlink-excluded.outputs) }}'
        shell:
          bash
  test-using-branch-names-for-base-sha-and-sha-inputs:
    name: Test using branch names for base_sha and sha inputs
    runs-on: ubuntu-latest
@@ -298,13 +396,13 @@ jobs:
    steps:
      - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          repository: ${{ github.event.pull_request.head.repo.full_name }}
          fetch-depth: 0
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
@@ -337,13 +435,13 @@ jobs:
    steps:
      - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          repository: ${{ github.event.pull_request.head.repo.full_name }}
          fetch-depth: ${{ matrix.fetch-depth }}
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
@@ -371,12 +469,12 @@ jobs:
    steps:
      - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          ref: ${{ github.event.pull_request.head.sha }}
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
@@ -405,14 +503,14 @@ jobs:
    steps:
      - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          fetch-depth: ${{ matrix.fetch-depth }}
          persist-credentials: false
          repository: ${{ github.event.pull_request.head.repo.full_name }}
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
@@ -435,10 +533,10 @@ jobs:
      contents: read
    steps:
      - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
@@ -490,10 +588,10 @@ jobs:
      contents: read
    steps:
      - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
@@ -545,7 +643,7 @@ jobs:
      pull-requests: read
    steps:
      - name: Checkout into dir1
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          repository: ${{ github.event.pull_request.head.repo.full_name }}
          submodules: true
@@ -553,7 +651,7 @@ jobs:
          path: dir1
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
          path: dir1/dist
@@ -577,14 +675,14 @@ jobs:
      contents: read
    steps:
      - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          repository: ${{ github.event.pull_request.head.repo.full_name }}
          submodules: true
          fetch-depth: 0
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
          path: dist
@@ -614,7 +712,7 @@ jobs:
      contents: read
    steps:
      - name: Checkout into dir1
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          repository: ${{ github.event.pull_request.head.repo.full_name }}
          submodules: true
@@ -622,7 +720,7 @@ jobs:
          path: dir1
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
          path: dir1/dist
@@ -653,14 +751,14 @@ jobs:
    steps:
      - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          ref: ${{ github.event.pull_request.head.sha || github.sha }}
          submodules: recursive
          fetch-depth: ${{ matrix.fetch-depth }}
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
@@ -719,14 +817,14 @@ jobs:
    steps:
      - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          ref: ${{ github.event.pull_request.head.sha || github.sha }}
          submodules: recursive
          fetch-depth: ${{ matrix.fetch-depth }}
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
@@ -758,6 +856,24 @@ jobs:
        shell:
          bash
      - name: Run changed-files with files_yaml, files_ignore_yaml
        id: changed-files-ignore
        uses: ./
        with:
          files_yaml: |
            test:
              - test/**.txt
              - test/**.md
          files_ignore_yaml: |
            test:
              - test/test.txt 
      - name: Show output
        run: |
          echo "${{ toJSON(steps.changed-files-ignore.outputs) }}"
        shell:
          bash
      - name: Run changed-files with files_yaml, json and write_output_files
        id: changed-files-json-write-output-files
        uses: ./
@@ -796,14 +912,14 @@ jobs:
    steps:
      - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          ref: ${{ github.event.pull_request.head.sha || github.sha }}
          submodules: recursive
          fetch-depth: ${{ matrix.fetch-depth }}
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
@@ -982,7 +1098,7 @@ jobs:
      contents: read
    steps:
      - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          ref: a52f8621d26d5d9f54b80f74bda2d9eedff94693
          repository: ${{ github.event.pull_request.head.repo.full_name }}
@@ -1020,7 +1136,7 @@ jobs:
      contents: read
    steps:
      - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          ref: ${{ github.event.pull_request.head.sha }}
          repository: ${{ github.event.pull_request.head.repo.full_name }}
@@ -1099,7 +1215,7 @@ jobs:
    steps:
      - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          ref: ${{ github.event.pull_request.head.sha }}
          repository: ${{ github.event.pull_request.head.repo.full_name }}
@@ -1107,7 +1223,7 @@ jobs:
          fetch-depth: ${{ matrix.fetch-depth }}
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
@@ -1119,9 +1235,9 @@ jobs:
          since_last_remote_commit: true
      - name: Verify succeeded pull_request(closed)
-        if: steps.changed-files-since-last-remote-commit.outcome != 'failure' && matrix.fetch-depth == 1 && github.event.action == 'closed' && github.event_name == 'pull_request'
+        if: steps.changed-files-since-last-remote-commit.outcome != 'success' && matrix.fetch-depth == 1 && github.event.action == 'closed' && github.event_name == 'pull_request'
        run: |
-          echo "Expected: (failure) got ${{ steps.changed-files-since-last-remote-commit.outcome }}"
+          echo "Expected: (success) got ${{ steps.changed-files-since-last-remote-commit.outcome }}"
          exit 1
      - name: Verify succeeded
@@ -1152,13 +1268,13 @@ jobs:
    steps:
      - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          submodules: true
          repository: ${{ github.event.pull_request.head.repo.full_name }}
          fetch-depth: ${{ matrix.fetch-depth }}
      - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
        with:
          name: build-assets
      - name: Dump GitHub context
@@ -2143,9 +2259,9 @@ jobs:
          bash
      - name: Get branch name
        id: branch-name
-        uses: tj-actions/branch-names@v8
+        uses: tj-actions/branch-names@5250492686b253f06fa55861556d1027b067aeb5 # v9.0.2
        if: github.event_name == 'pull_request' && matrix.fetch-depth == 0
-      - uses: nrwl/nx-set-shas@v4
+      - uses: nrwl/nx-set-shas@3e9ad7370203c1e93d109be57f3b72eb0eb511b1 # v4.4.0
        id: last_successful_commit
        if: github.event_name == 'pull_request' && github.event.action != 'closed' && matrix.fetch-depth == 0
        with:
--- a/.github/workflows/update-readme.yml
+++ b/.github/workflows/update-readme.yml
@@ -1,7 +1,7 @@
 name: Format README.md
 permissions:
-  contents: read
+  contents: write
  pull-requests: write
 on:
@@ -13,21 +13,21 @@ jobs:
  sync-assets:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
        with:
          fetch-depth: 0
      - name: Run auto-doc
-        uses: tj-actions/auto-doc@v3
+        uses: tj-actions/auto-doc@b10ceedffd794ec29a8fa8700529f40c1b64a951 # v3.6.0
        with:
          use_code_blocks: true
-          use_major_version: true
+          use_tag_commit_hash: true
      - name: Run remark
-        uses: tj-actions/remark@v3
+        uses: tj-actions/remark@10fc40701928cbafcc4a2d241679579d218144ff # v3
      - name: Verify Changed files
-        uses: tj-actions/verify-changed-files@v20
+        uses: tj-actions/verify-changed-files@a1c6acee9df209257a246f2cc6ae8cb6581c1edf # v20.0.4
        id: verify_changed_files
        with:
          files: |
@@ -41,7 +41,7 @@ jobs:
      - name: Create Pull Request
        if: failure()
-        uses: peter-evans/create-pull-request@v6
+        uses: peter-evans/create-pull-request@c0f553fe549906ede9cf27b5156039d195d2ece0 # v8.1.0
        with:
          base: "main"
          labels: "merge when passing"
@@ -49,4 +49,5 @@ jobs:
          branch: "chore/update-readme"
          commit-message: "Updated README.md"
          body: "Updated README.md"
-          token: ${{ secrets.PAT_TOKEN }}
+          sign-commits: true
          token: ${{ secrets.GITHUB_TOKEN }}
--- a/.github/workflows/workflow-run-example.yml
+++ b/.github/workflows/workflow-run-example.yml
@@ -13,7 +13,7 @@ jobs:
    if: ${{ github.event.workflow_run.conclusion == 'success' }}
    steps:
      - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
      - name: Get changed files
        id: changed-files
@@ -29,7 +29,7 @@ jobs:
    if: ${{ github.event.workflow_run.conclusion == 'failure' }}
    steps:
      - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
      - name: Get changed files
        id: changed-files
--- a/.nvmrc
+++ b/.nvmrc
@@ -1 +1 @@
-20
+24
--- a/HISTORY.md
+++ b/HISTORY.md
--- a/README.md
+++ b/README.md
@@ -3,13 +3,12 @@
 [![Windows](https://img.shields.io/badge/Windows-0078D6?style=for-the-badge\&logo=windows\&logoColor=white)](https://docs.github.com/en/actions/reference/workflow-syntax-for-github-actions#jobsjob_idruns-on)
 [![Public workflows that use this action.](https://img.shields.io/endpoint?style=for-the-badge\&url=https%3A%2F%2Fused-by.vercel.app%2Fapi%2Fgithub-actions%2Fused-by%3Faction%3Dtj-actions%2Fchanged-files%26package_id%3DUGFja2FnZS0yOTQyNTU4MDk5%26badge%3Dtrue)](https://github.com/search?o=desc\&q=tj-actions+changed-files+language%3AYAML\&s=\&type=Code)
-[![Codacy Badge](https://app.codacy.com/project/badge/Grade/4fe2f49c3ab144b0bbe4effc85a061a0)](https://app.codacy.com/gh/tj-actions/changed-files/dashboard?utm_source=gh\&utm_medium=referral\&utm_content=\&utm_campaign=Badge_grade)
+[![Codacy Badge](https://app.codacy.com/project/badge/Grade/d59579c4b70e453a93cd2147b5d57384)](https://app.codacy.com/gh/tj-actions/changed-files/dashboard?utm_source=gh\&utm_medium=referral\&utm_content=\&utm_campaign=Badge_grade)
 [![CI](https://github.com/tj-actions/changed-files/actions/workflows/test.yml/badge.svg)](https://github.com/tj-actions/changed-files/actions/workflows/test.yml)
 [![Update release version.](https://github.com/tj-actions/changed-files/actions/workflows/sync-release-version.yml/badge.svg)](https://github.com/tj-actions/changed-files/actions/workflows/sync-release-version.yml)
 <!-- ALL-CONTRIBUTORS-BADGE:START - Do not remove or modify this section -->
-[![All Contributors](https://img.shields.io/badge/all_contributors-27-orange.svg?style=flat-square)](#contributors-)
+[![All Contributors](https://img.shields.io/badge/all_contributors-30-orange.svg?style=flat-square)](#contributors-)
 <!-- ALL-CONTRIBUTORS-BADGE:END -->
@@ -45,11 +44,12 @@ Effortlessly track all changed files and directories relative to a target branch
 *   [Credits 👏](#credits-)
 *   [Report Bugs 🐛](#report-bugs-)
 *   [Contributors ✨](#contributors-)
 *   [💼 Automate Your Job Search Too](#-automate-your-job-search-too)
 ## Features 🚀
 *   Fast execution, averaging 0-10 seconds.
-*   Leverages either [Github's REST API](https://docs.github.com/en/rest/reference/repos#list-commits) or [Git's native diff](https://git-scm.com/docs/git-diff) to determine changed files.
+*   Leverages either [Github's REST API](https://docs.github.com/en/rest/reference/repos#list-commits) or [Git's native diff command](https://git-scm.com/docs/git-diff) to determine changed files.
 *   Facilitates easy debugging.
 *   Scales to handle large/mono repositories.
 *   Supports Git submodules.
@@ -60,7 +60,7 @@ Effortlessly track all changed files and directories relative to a target branch
    *   Optionally excludes the current directory.
 *   Writes outputs to a designated `.txt` or `.json` file for further processing.
 *   Restores deleted files to their previous location or a newly specified location.
-*   Supports fetching a fixed number of commits which improves performance.
+*   Supports fetching a fixed number of commits, which improves performance.
 *   Compatible with all platforms (Linux, MacOS, Windows).
 *   Supports [GitHub-hosted runners](https://docs.github.com/en/actions/using-github-hosted-runners/about-github-hosted-runners).
 *   Supports [GitHub Enterprise Server](https://docs.github.com/en/enterprise-server@3.3/admin/github-actions/getting-started-with-github-actions-for-your-enterprise/getting-started-with-github-actions-for-github-enterprise-server).
@@ -71,7 +71,7 @@ Effortlessly track all changed files and directories relative to a target branch
    *   Between the last remote branch commit and the current HEAD.
 *   Restricts change detection to a subset of files and directories:
    *   Provides boolean output indicating changes in specific files.
-    *   Uses [Glob pattern](https://codepen.io/mrmlnc/pen/OXQjMe) matching.
+    *   Uses [Glob pattern](https://en.wikipedia.org/wiki/Glob_\(programming\)) matching.
        *   Supports Globstar.
        *   Supports brace expansion.
        *   Supports negation.
@@ -122,7 +122,7 @@ jobs:
      # -----------------------------------------------------------------------------------------------------------
      - name: Get changed files
        id: changed-files
-        uses: tj-actions/changed-files@v44
+        uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
        # To compare changes between the current commit and the last pushed remote commit set `since_last_remote_commit: true`. e.g
        # with:
        #   since_last_remote_commit: true 
@@ -140,11 +140,12 @@ jobs:
      # -----------------------------------------------------------------------------------------------------------
      - name: Get all changed markdown files
        id: changed-markdown-files
-        uses: tj-actions/changed-files@v44
+        uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
        with:
          # Avoid using single or double quotes for multiline patterns
          files: |
-             **.md
+            **.md
            docs/**.md
      - name: List all changed files markdown files
        if: steps.changed-markdown-files.outputs.any_changed == 'true'
@@ -160,7 +161,7 @@ jobs:
      # -----------------------------------------------------------------------------------------------------------
      - name: Get all test, doc and src files that have changed
        id: changed-files-yaml
-        uses: tj-actions/changed-files@v44
+        uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
        with:
          files_yaml: |
            doc:
@@ -195,7 +196,7 @@ jobs:
      # -----------------------------------------------------------------------------------------------------------
      - name: Get changed files in the docs folder
        id: changed-files-specific
-        uses: tj-actions/changed-files@v44
+        uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
        with:
          files: docs/*.{js,html}  # Alternatively using: `docs/**`
          files_ignore: docs/static.js
@@ -237,7 +238,7 @@ jobs:
    steps:
      - name: Get changed files
        id: changed-files
-        uses: tj-actions/changed-files@v44
+        uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      - name: List all changed files
        env:
@@ -280,7 +281,7 @@ jobs:
      - name: Get changed files
        id: changed-files
-        uses: tj-actions/changed-files@v44
+        uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      # NOTE: `since_last_remote_commit: true` is implied by default and falls back to the previous local commit.
      - name: List all changed files
@@ -327,7 +328,7 @@ Support this project with a :star:
 <!-- AUTO-DOC-INPUT:START - Do not remove or modify this section -->
 ```yaml
- uses: tj-actions/changed-files@v44
+- uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
  id: changed-files
  with:
    # Github API URL.
@@ -410,6 +411,11 @@ Support this project with a :star:
    # Default: "false"
    exclude_submodules: ''
    # Exclude symlinks from changed files.
    # Type: boolean
    # Default: "false"
    exclude_symlinks: ''
    # Fail when the initial diff 
    # fails. 
    # Type: boolean
@@ -674,6 +680,12 @@ Support this project with a :star:
    # Default: "false"
    skip_initial_fetch: ''
    # Do not fail when base 
    # and head SHAs are identical. 
    # Type: boolean
    # Default: "false"
    skip_same_sha: ''
    # Tags pattern to ignore.
    # Type: string
    tags_ignore_pattern: ''
@@ -760,6 +772,7 @@ Support this project with a :star:
 |                   <a name="output_all_modified_files_count"></a>[all\_modified\_files\_count](#output_all_modified_files_count)                   | string |                                                                                                                                       Returns the number of `all_modified_files`                                                                                                                                        |
 |                 <a name="output_all_old_new_renamed_files"></a>[all\_old\_new\_renamed\_files](#output_all_old_new_renamed_files)                  | string | Returns only files that are <br>Renamed and lists their old <br>and new names. **NOTE:** This <br>requires setting `include_all_old_new_renamed_files` to `true`. <br>Also, keep in mind that <br>this output is global and <br>wouldn't be nested in outputs <br>generated when the `*_yaml_*` input <br>is used. (R)  |
 |        <a name="output_all_old_new_renamed_files_count"></a>[all\_old\_new\_renamed\_files\_count](#output_all_old_new_renamed_files_count)         | string |                                                                                                                                    Returns the number of `all_old_new_renamed_files`                                                                                                                                    |
 |                                         <a name="output_any_added"></a>[any\_added](#output_any_added)                                          | string |                                                                                                Returns `true` when any of <br>the filenames provided using the <br>`files*` or `files_ignore*` inputs have been added.                                                                                                  |
 |                                      <a name="output_any_changed"></a>[any\_changed](#output_any_changed)                                       | string |                      Returns `true` when any of <br>the filenames provided using the <br>`files*` or `files_ignore*` inputs have changed. This <br>defaults to `true` when no <br>patterns are specified. i.e. *includes a combination of all added, copied, modified and renamed files (ACMR)*.                        |
 |                                      <a name="output_any_deleted"></a>[any\_deleted](#output_any_deleted)                                       | string |                                                             Returns `true` when any of <br>the filenames provided using the <br>`files*` or `files_ignore*` inputs have been deleted. <br>This defaults to `true` when <br>no patterns are specified. (D)                                                               |
 |                                     <a name="output_any_modified"></a>[any\_modified](#output_any_modified)                                     | string |            Returns `true` when any of <br>the filenames provided using the <br>`files*` or `files_ignore*` inputs have been modified. <br>This defaults to `true` when <br>no patterns are specified. i.e. <br>*includes a combination of all added, copied, modified, renamed, and deleted files (ACMRD)*.             |
@@ -812,7 +825,7 @@ The format of the version string is as follows:
 ...
    - name: Get changed files
      id: changed-files
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
 ...
 ```
@@ -825,7 +838,7 @@ The format of the version string is as follows:
 ...
    - name: Get changed files
      id: changed-files
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      with:
        safe_output: false # set to false because we are using an environment variable to store the output and avoid command injection.
@@ -848,7 +861,7 @@ The format of the version string is as follows:
 ...
    - name: Get all changed files and use a comma separator in the output
      id: changed-files
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      with:
        separator: ","
 ...
@@ -865,7 +878,7 @@ See [inputs](#inputs) for more information.
 ...
    - name: Get changed files
      id: changed-files
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
    - name: List all added files
      env:
@@ -888,7 +901,7 @@ See [outputs](#outputs) for a list of all available outputs.
 ...
    - name: Get changed files
      id: changed-files
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
    - name: Run a step if my-file.txt was modified
      if: contains(steps.changed-files.outputs.modified_files, 'my-file.txt')
@@ -909,7 +922,7 @@ See [outputs](#outputs) for a list of all available outputs.
   - name: Get changed files and write the outputs to a Txt file
     id: changed-files-write-output-files-txt
-     uses: tj-actions/changed-files@v44
+     uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
     with:
       write_output_files: true
@@ -928,7 +941,7 @@ See [outputs](#outputs) for a list of all available outputs.
 ...
   - name: Get changed files and write the outputs to a JSON file
     id: changed-files-write-output-files-json
-     uses: tj-actions/changed-files@v44
+     uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
     with:
       json: true
       write_output_files: true
@@ -948,7 +961,7 @@ See [outputs](#outputs) for a list of all available outputs.
 ...
    - name: Get changed files
      id: changed-files
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      with:
        files: |
          my-file.txt
@@ -971,7 +984,7 @@ See [inputs](#inputs) for more information.
 ...
    - name: Get changed files
      id: changed-files-specific
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      with:
        files: |
          my-file.txt
@@ -1022,7 +1035,7 @@ See [outputs](#outputs) for a list of all available outputs.
 ...
    - name: Get changed files using a source file or list of file(s) to populate to files input.
      id: changed-files-specific-source-file
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      with:
        files_from_source_file: test/changed-files-list.txt
 ...
@@ -1039,7 +1052,7 @@ See [inputs](#inputs) for more information.
 ...
    - name: Get changed files using a source file or list of file(s) to populate to files input and optionally specify more files.
      id: changed-files-specific-source-file-and-specify-files
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      with:
        files_from_source_file: |
          test/changed-files-list.txt
@@ -1060,7 +1073,7 @@ See [inputs](#inputs) for more information.
 ...
    - name: Get changed files using a different SHA
      id: changed-files
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      with:
        sha: ${{ github.event.pull_request.head.sha }}
 ...
@@ -1077,7 +1090,7 @@ See [inputs](#inputs) for more information.
 ...
    - name: Get changed files using a different base SHA
      id: changed-files
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      with:
        base_sha: ${{ github.event.pull_request.base.sha }}
 ...
@@ -1109,7 +1122,7 @@ jobs:
      - name: Get changed files
        id: changed-files
-        uses: tj-actions/changed-files@v44
+        uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      - name: List changed files
        env:
@@ -1119,7 +1132,7 @@ jobs:
      - name: Get changed files in the .github folder
        id: changed-files-specific
-        uses: tj-actions/changed-files@v44
+        uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
        with:
          files: .github/**
@@ -1150,7 +1163,7 @@ See [inputs](#inputs) for more information.
    - name: Run changed-files with defaults in dir1
      id: changed-files-for-dir1
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      with:
        path: dir1
@@ -1175,13 +1188,13 @@ See [inputs](#inputs) for more information.
 ...
    - name: Run changed-files with quotepath disabled
      id: changed-files-quotepath
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      with:
        quotepath: "false"
    - name: Run changed-files with quotepath disabled for a specified list of file(s)
      id: changed-files-quotepath-specific
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      with:
        files: test/test-è.txt
        quotepath: "false"
@@ -1214,7 +1227,7 @@ See [inputs](#inputs) for more information.
      - name: Run changed-files with the commit of the last successful test workflow run
        id: changed-files-base-sha-push
-        uses: tj-actions/changed-files@v44
+        uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
        with:
          base_sha: ${{ steps.last_successful_commit_push.outputs.base }}
 ...
@@ -1241,7 +1254,7 @@ See [inputs](#inputs) for more information.
      - name: Run changed-files with the commit of the last successful test workflow run on the main branch
        id: changed-files-base-sha-pull-request
-        uses: tj-actions/changed-files@v44
+        uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
        with:
          base_sha: ${{ steps.last_successful_commit_pull_request.outputs.base }}
 ...
@@ -1267,7 +1280,7 @@ See [inputs](#inputs) for more information.
 ...
    - name: Run changed-files with dir_names
      id: changed-files-dir-names
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      with:
        dir_names: "true"
 ...
@@ -1284,7 +1297,7 @@ See [inputs](#inputs) for more information.
 ...
    - name: Run changed-files with JSON output
      id: changed-files-json
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      with:
        json: "true"
 ...
@@ -1301,13 +1314,13 @@ See [inputs](#inputs) for more information.
 ...
    - name: Get changed-files since 2022-08-19
      id: changed-files-since
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      with:
        since: "2022-08-19"
    - name: Get changed-files until 2022-08-20
      id: changed-files-until
-      uses: tj-actions/changed-files@v44
+      uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v47.0.5
      with:
        until: "2022-08-20"
 ...
@@ -1325,14 +1338,10 @@ See [inputs](#inputs) for more information.
 *   [qgis/QGIS: uses tj-actions/changed-files to automate spell checking](https://github.com/qgis/QGIS/blob/a5333497e90ac9de4ca70463d8e0b64c3f294d63/.github/workflows/code_layout.yml#L147)
 *   [coder/code-server: uses tj-actions/changed-files to automate detecting changes and run steps based on the outcome](https://github.com/coder/code-server/blob/c32a31d802f679846876b8ad9aacff6cf7b5361d/.github/workflows/build.yaml#L48)
 *   [tldr-pages/tldr: uses tj-actions/changed-files to automate detecting spelling errors](https://github.com/tldr-pages/tldr/blob/c1b714c55cb0048037b79a681a10d7f3ddb0164c/.github/workflows/codespell.yml#L18-L26)
 *   [nodejs/docker-node: uses tj-actions/changed-files to generate matrix jobs based on changes detected](https://github.com/nodejs/docker-node/blob/3c4fa6daf06a4786d202f2f610351837806a0380/.github/workflows/build-test.yml#L29)
 *   [refined-github: uses tj-actions/changed-files to automate test URL validation in added/edited files](https://github.com/refined-github/refined-github/blob/b754bfe58904da8a599d7876fdaaf18302785629/.github/workflows/features.yml#L35)
 *   [aws-doc-sdk-examples: uses tj-actions/changed-files to automate testing](https://github.com/awsdocs/aws-doc-sdk-examples/blob/2393723ef6b0cad9502f4852f5c72f7be58ca89d/.github/workflows/javascript.yml#L22)
 *   [nhost: uses tj-actions/changed-files to automate testing based on changes detected](https://github.com/nhost/nhost/blob/71a8ce444618a8ac4d660518172fba4883c4014b/.github/workflows/ci.yaml#L44-L48)
@@ -1445,6 +1454,11 @@ Thanks goes to these wonderful people ([emoji key](https://allcontributors.org/d
      <td align="center" valign="top" width="14.28%"><a href="https://keisukeyamashita.com"><img src="https://avatars.githubusercontent.com/u/23056537?v=4?s=100" width="100px;" alt="KeisukeYamashita"/><br /><sub><b>KeisukeYamashita</b></sub></a><br /><a href="https://github.com/tj-actions/changed-files/commits?author=KeisukeYamashita" title="Documentation">📖</a></td>
      <td align="center" valign="top" width="14.28%"><a href="https://github.com/codesculpture"><img src="https://avatars.githubusercontent.com/u/63452117?v=4?s=100" width="100px;" alt="Aravind"/><br /><sub><b>Aravind</b></sub></a><br /><a href="https://github.com/tj-actions/changed-files/commits?author=codesculpture" title="Code">💻</a> <a href="https://github.com/tj-actions/changed-files/issues?q=author%3Acodesculpture" title="Bug reports">🐛</a></td>
      <td align="center" valign="top" width="14.28%"><a href="https://lukaspfahler.de"><img src="https://avatars.githubusercontent.com/u/2308119?v=4?s=100" width="100px;" alt="Lukas Pfahler"/><br /><sub><b>Lukas Pfahler</b></sub></a><br /><a href="https://github.com/tj-actions/changed-files/commits?author=Whadup" title="Code">💻</a></td>
      <td align="center" valign="top" width="14.28%"><a href="https://github.com/RajendraP"><img src="https://avatars.githubusercontent.com/u/8928165?v=4?s=100" width="100px;" alt="Rajendra Pandey"/><br /><sub><b>Rajendra Pandey</b></sub></a><br /><a href="https://github.com/tj-actions/changed-files/commits?author=RajendraP" title="Documentation">📖</a></td>
    </tr>
    <tr>
      <td align="center" valign="top" width="14.28%"><a href="https://undefined.moe/"><img src="https://avatars.githubusercontent.com/u/29992205?v=4?s=100" width="100px;" alt="undefined"/><br /><sub><b>undefined</b></sub></a><br /><a href="https://github.com/tj-actions/changed-files/commits?author=undefined-moe" title="Documentation">📖</a></td>
      <td align="center" valign="top" width="14.28%"><a href="https://github.com/Jellyfrog"><img src="https://avatars.githubusercontent.com/u/759887?v=4?s=100" width="100px;" alt="Jellyfrog"/><br /><sub><b>Jellyfrog</b></sub></a><br /><a href="https://github.com/tj-actions/changed-files/commits?author=Jellyfrog" title="Code">💻</a> <a href="https://github.com/tj-actions/changed-files/commits?author=Jellyfrog" title="Documentation">📖</a></td>
    </tr>
  </tbody>
 </table>
@@ -1456,3 +1470,17 @@ Thanks goes to these wonderful people ([emoji key](https://allcontributors.org/d
 <!-- ALL-CONTRIBUTORS-LIST:END -->
 This project follows the [all-contributors](https://github.com/all-contributors/all-contributors) specification. Contributions of any kind welcome!
 ***
 ## 💼 Automate Your Job Search Too
 You automate your CI/CD. Automate your job applications too.
 **[ApplySmart AI](https://applysmart.ai)** helps you:
 *   Generate tailored resumes & cover letters in seconds
 *   Extract job details from any posting automatically
 *   Track applications like you track deployments
 **Free tier available** → [applysmart.ai](https://applysmart.ai)
--- a/action.yml
+++ b/action.yml
@@ -227,6 +227,14 @@ inputs:
    description: "Exclude changes to submodules."
    required: false
    default: "false"
  exclude_symlinks:
    description: "Exclude symlinks from changed files."
    required: false
    default: "false"
  skip_same_sha:
    description: "Do not fail when base and head SHAs are identical."
    required: false
    default: "false"
  fetch_missing_history_max_retries:
    description: "Maximum number of retries to fetch missing history."
    required: false
@@ -250,6 +258,8 @@ outputs:
    description: "Returns only files that are Added (A)."
  added_files_count:
    description: "Returns the number of `added_files`"
  any_added:
    description: "Returns `true` when any of the filenames provided using the `files*` or `files_ignore*` inputs have been added."
  copied_files:
    description: "Returns only files that are Copied (C)."
  copied_files_count:
@@ -324,7 +334,7 @@ outputs:
    description: "Returns all changed YAML keys when the `files_yaml` input is used. i.e. key that contains any path that has either been added, copied, modified, and renamed (ACMR)"
 runs:
-  using: 'node20'
+  using: 'node24'
  main: 'dist/index.js'
 branding:
--- a/dist/index.js
+++ b/dist/index.js
--- a/dist/index.js.map
+++ b/dist/index.js.map
--- a/dist/licenses.txt
+++ b/dist/licenses.txt
@@ -6019,19 +6019,6 @@ Permission to use, copy, modify, and/or distribute this software for any purpose
 THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
 uuid
 MIT
 The MIT License (MIT)
 Copyright (c) 2010-2020 Robert Kieffer and other contributors
 Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
 The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
 wrappy
 ISC
 The ISC License
--- a/dist/sourcemap-register.js
+++ b/dist/sourcemap-register.js
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
  "name": "@tj-actions/changed-files",
-  "version": "44.5.7",
+  "version": "45.0.8",
  "description": "Github action to retrieve all (added, copied, modified, deleted, renamed, type changed, unmerged, unknown) files and directories.",
  "main": "lib/main.js",
  "publishConfig": {
@@ -33,30 +33,30 @@
  },
  "homepage": "https://github.com/tj-actions/changed-files#readme",
  "dependencies": {
-    "@actions/core": "^1.10.0",
+    "@actions/core": "^2.0.0",
-    "@actions/exec": "^1.1.1",
+    "@actions/exec": "^2.0.0",
    "@actions/github": "^6.0.0",
-    "@octokit/rest": "^21.0.0",
+    "@octokit/rest": "^22.0.0",
    "@stdlib/utils-convert-path": "^0.2.1",
    "lodash": "^4.17.21",
    "micromatch": "^4.0.5",
    "yaml": "^2.3.1"
  },
  "devDependencies": {
-    "@types/jest": "^29.5.2",
+    "@types/jest": "^30.0.0",
    "@types/lodash": "^4.14.195",
    "@types/micromatch": "^4.0.2",
-    "@types/node": "^22.0.0",
+    "@types/node": "^25.0.0",
-    "@types/uuid": "^10.0.0",
+    "@types/uuid": "^11.0.0",
    "@typescript-eslint/eslint-plugin": "^7.0.0",
    "@typescript-eslint/parser": "^7.0.0",
    "@vercel/ncc": "^0.38.0",
    "eslint": "^8.43.0",
-    "eslint-config-prettier": "^9.0.0",
+    "eslint-config-prettier": "^10.0.0",
    "eslint-plugin-github": "^5.0.0",
-    "eslint-plugin-jest": "^28.0.0",
+    "eslint-plugin-jest": "^29.0.1",
    "eslint-plugin-prettier": "^5.0.0-alpha.2",
-    "jest": "^29.5.0",
+    "jest": "^30.0.3",
    "prettier": "^3.0.0",
    "ts-jest": "^29.1.0",
    "typescript": "^5.1.3"
--- a/renovate.json
+++ b/renovate.json
@@ -1,58 +0,0 @@
 {
  "extends": [
    "config:base"
  ],
  "enabled": true,
  "prHourlyLimit": 10,
  "prConcurrentLimit": 5,
  "rebaseWhen": "behind-base-branch",
  "addLabels": [
    "dependencies",
    "merge when passing"
  ],
  "assignees": [
    "jackton1"
  ],
  "assignAutomerge": true,
  "dependencyDashboard": true,
  "dependencyDashboardAutoclose": true,
  "lockFileMaintenance": {
    "enabled": true,
    "automerge": true
  },
  "nvm": {
    "enabled": false
  },
  "packageRules": [
    {
      "matchUpdateTypes": [
        "minor",
        "patch",
        "pin",
        "digest"
      ],
      "automerge": true,
      "rebaseWhen": "behind-base-branch",
      "addLabels": [
        "merge when passing"
      ]
    },
    {
      "description": "docker images",
      "matchLanguages": [
        "docker"
      ],
      "matchUpdateTypes": [
        "minor",
        "patch",
        "pin",
        "digest"
      ],
      "rebaseWhen": "behind-base-branch",
      "addLabels": [
        "merge when passing"
      ],
      "automerge": true
    }
  ]
 }
--- a/src/tests/snapshots/inputs.test.ts.snap
+++ b/src/tests/snapshots/inputs.test.ts.snap
@@ -1,4 +1,4 @@
-// Jest Snapshot v1, https://goo.gl/fbAQLP
+// Jest Snapshot v1, https://jestjs.io/docs/snapshot-testing
 exports[`getInputs should correctly parse boolean inputs 1`] = `
 {
@@ -12,6 +12,7 @@ exports[`getInputs should correctly parse boolean inputs 1`] = `
  "dirNamesIncludeFilesSeparator": "",
  "escapeJson": false,
  "excludeSubmodules": "false",
  "excludeSymlinks": "false",
  "failOnInitialDiffError": "false",
  "failOnSubmoduleDiffError": "false",
  "fetchAdditionalSubmoduleHistory": "false",
@@ -53,6 +54,7 @@ exports[`getInputs should correctly parse boolean inputs 1`] = `
  "since": "",
  "sinceLastRemoteCommit": "false",
  "skipInitialFetch": "true",
  "skipSameSha": "false",
  "tagsIgnorePattern": "",
  "tagsPattern": "*",
  "token": "",
@@ -76,6 +78,7 @@ exports[`getInputs should correctly parse numeric inputs 1`] = `
  "dirNamesMaxDepth": 2,
  "escapeJson": false,
  "excludeSubmodules": false,
  "excludeSymlinks": false,
  "failOnInitialDiffError": false,
  "failOnSubmoduleDiffError": false,
  "fetchAdditionalSubmoduleHistory": false,
@@ -115,6 +118,7 @@ exports[`getInputs should correctly parse numeric inputs 1`] = `
  "since": "",
  "sinceLastRemoteCommit": false,
  "skipInitialFetch": false,
  "skipSameSha": false,
  "tagsIgnorePattern": "",
  "tagsPattern": "",
  "token": "",
@@ -137,6 +141,7 @@ exports[`getInputs should correctly parse string inputs 1`] = `
  "dirNamesIncludeFilesSeparator": "",
  "escapeJson": false,
  "excludeSubmodules": false,
  "excludeSymlinks": false,
  "failOnInitialDiffError": false,
  "failOnSubmoduleDiffError": false,
  "fetchAdditionalSubmoduleHistory": false,
@@ -175,6 +180,7 @@ exports[`getInputs should correctly parse string inputs 1`] = `
  "since": "",
  "sinceLastRemoteCommit": false,
  "skipInitialFetch": false,
  "skipSameSha": false,
  "tagsIgnorePattern": "",
  "tagsPattern": "",
  "token": "token",
@@ -198,6 +204,7 @@ exports[`getInputs should handle invalid numeric inputs correctly 1`] = `
  "dirNamesMaxDepth": 2,
  "escapeJson": false,
  "excludeSubmodules": false,
  "excludeSymlinks": false,
  "failOnInitialDiffError": false,
  "failOnSubmoduleDiffError": false,
  "fetchAdditionalSubmoduleHistory": false,
@@ -237,6 +244,7 @@ exports[`getInputs should handle invalid numeric inputs correctly 1`] = `
  "since": "",
  "sinceLastRemoteCommit": false,
  "skipInitialFetch": false,
  "skipSameSha": false,
  "tagsIgnorePattern": "",
  "tagsPattern": "",
  "token": "",
@@ -260,6 +268,7 @@ exports[`getInputs should handle negative numeric inputs correctly 1`] = `
  "dirNamesMaxDepth": -2,
  "escapeJson": false,
  "excludeSubmodules": false,
  "excludeSymlinks": false,
  "failOnInitialDiffError": false,
  "failOnSubmoduleDiffError": false,
  "fetchAdditionalSubmoduleHistory": false,
@@ -299,6 +308,7 @@ exports[`getInputs should handle negative numeric inputs correctly 1`] = `
  "since": "",
  "sinceLastRemoteCommit": false,
  "skipInitialFetch": false,
  "skipSameSha": false,
  "tagsIgnorePattern": "",
  "tagsPattern": "",
  "token": "",
@@ -321,6 +331,7 @@ exports[`getInputs should return default values when no inputs are provided 1`]
  "dirNamesIncludeFilesSeparator": "",
  "escapeJson": false,
  "excludeSubmodules": false,
  "excludeSymlinks": false,
  "failOnInitialDiffError": false,
  "failOnSubmoduleDiffError": false,
  "fetchAdditionalSubmoduleHistory": false,
@@ -362,6 +373,7 @@ exports[`getInputs should return default values when no inputs are provided 1`]
  "since": "",
  "sinceLastRemoteCommit": false,
  "skipInitialFetch": false,
  "skipSameSha": false,
  "tagsIgnorePattern": "",
  "tagsPattern": "*",
  "token": "",
--- a/src/tests/utils.test.ts
+++ b/src/tests/utils.test.ts
@@ -639,6 +639,8 @@ describe('utils test', () => {
        negationPatternsFirst: false,
        useRestApi: false,
        excludeSubmodules: false,
        excludeSymlinks: false,
        skipSameSha: false,
        fetchMissingHistoryMaxRetries: 20,
        usePosixPathSeparator: false,
        tagsPattern: '*',
--- a/src/changedFiles.ts
+++ b/src/changedFiles.ts
@@ -16,6 +16,8 @@ import {
  getFilteredChangedFiles,
  gitRenamedFiles,
  gitSubmoduleDiffSHA,
  isSymlinkInGitTree,
  isSymlinkOnDisk,
  isWindows,
  jsonOutput,
  setArrayOutput
@@ -89,21 +91,17 @@ export const processChangedFiles = async ({
      core.endGroup()
    }
-    if (modifiedKeys.length > 0) {
+    await setArrayOutput({
-      await setArrayOutput({
+      key: 'modified_keys',
-        key: 'modified_keys',
+      inputs,
-        inputs,
+      value: modifiedKeys
-        value: modifiedKeys
+    })
      })
    }
-    if (changedKeys.length > 0) {
+    await setArrayOutput({
-      await setArrayOutput({
+      key: 'changed_keys',
-        key: 'changed_keys',
+      inputs,
-        inputs,
+      value: changedKeys
-        value: changedKeys
+    })
      })
    }
  }
  if (filePatterns.length === 0 && Object.keys(yamlFilePatterns).length === 0) {
@@ -224,7 +222,8 @@ export const getAllDiffFiles = async ({
  outputRenamedFilesAsDeletedAndAdded,
  fetchAdditionalSubmoduleHistory,
  failOnInitialDiffError,
-  failOnSubmoduleDiffError
+  failOnSubmoduleDiffError,
  submoduleShas
 }: {
  workingDirectory: string
  diffSubmodule: boolean
@@ -234,6 +233,7 @@ export const getAllDiffFiles = async ({
  fetchAdditionalSubmoduleHistory: boolean
  failOnInitialDiffError: boolean
  failOnSubmoduleDiffError: boolean
  submoduleShas?: Record<string, {previousSha?: string; currentSha?: string}>
 }): Promise<ChangedFiles> => {
  const files = await getAllChangedFiles({
    cwd: workingDirectory,
@@ -260,6 +260,9 @@ export const getAllDiffFiles = async ({
      )
      if (submoduleShaResult.currentSha && submoduleShaResult.previousSha) {
        if (submoduleShas) {
          submoduleShas[submodulePath] = submoduleShaResult
        }
        let diff = '...'
        if (
@@ -304,6 +307,139 @@ export const getAllDiffFiles = async ({
  return files
 }
 export const filterSymlinksFromChangedFiles = async ({
  changedFiles,
  workingDirectory,
  diffResult,
  submodulePaths,
  submoduleShas
 }: {
  changedFiles: ChangedFiles
  workingDirectory: string
  diffResult: DiffResult
  submodulePaths: string[]
  submoduleShas?: Record<string, {previousSha?: string; currentSha?: string}>
 }): Promise<ChangedFiles> => {
  const filtered: ChangedFiles = {
    [ChangeTypeEnum.Added]: [],
    [ChangeTypeEnum.Copied]: [],
    [ChangeTypeEnum.Deleted]: [],
    [ChangeTypeEnum.Modified]: [],
    [ChangeTypeEnum.Renamed]: [],
    [ChangeTypeEnum.TypeChanged]: [],
    [ChangeTypeEnum.Unmerged]: [],
    [ChangeTypeEnum.Unknown]: []
  }
  const cache = new Map<string, boolean>()
  const diskCache = new Map<string, boolean>()
  const getSubmoduleContext = (
    filePath: string
  ): {
    cwd: string
    relativePath: string
    currentSha: string
    previousSha: string
    isSubmoduleRoot: boolean
  } => {
    const submodulePath = submodulePaths.find(p =>
      filePath.startsWith(`${p}${path.sep}`)
    )
    if (!submodulePath) {
      return {
        cwd: workingDirectory,
        relativePath: filePath,
        currentSha: diffResult.currentSha,
        previousSha: diffResult.previousSha,
        isSubmoduleRoot: false
      }
    }
    if (filePath === submodulePath) {
      return {
        cwd: workingDirectory,
        relativePath: filePath,
        currentSha: diffResult.currentSha,
        previousSha: diffResult.previousSha,
        isSubmoduleRoot: true
      }
    }
    const submoduleWorkingDirectory = path.join(workingDirectory, submodulePath)
    const relativePath = filePath.substring(submodulePath.length + 1)
    const submoduleSha = submoduleShas?.[submodulePath]
    return {
      cwd: submoduleWorkingDirectory,
      relativePath,
      currentSha: submoduleSha?.currentSha || diffResult.currentSha,
      previousSha: submoduleSha?.previousSha || diffResult.previousSha,
      isSubmoduleRoot: false
    }
  }
  const isSymlinkCached = async ({
    cwd,
    filePath,
    sha,
    preferDisk
  }: {
    cwd: string
    filePath: string
    sha: string
    preferDisk: boolean
  }): Promise<boolean> => {
    if (preferDisk) {
      const diskKey = `${cwd}|disk|${filePath}`
      const cachedDisk = diskCache.get(diskKey)
      if (cachedDisk !== undefined) {
        return cachedDisk
      }
      const diskResult = await isSymlinkOnDisk({cwd, filePath})
      diskCache.set(diskKey, diskResult)
      if (diskResult) {
        return true
      }
    }
    const treeKey = `${cwd}|${sha}|${filePath}`
    const cachedTree = cache.get(treeKey)
    if (cachedTree !== undefined) {
      return cachedTree
    }
    const treeResult = await isSymlinkInGitTree({cwd, sha, filePath})
    cache.set(treeKey, treeResult)
    return treeResult
  }
  for (const changeType of Object.keys(changedFiles) as ChangeTypeEnum[]) {
    const files = changedFiles[changeType] || []
    for (const filePath of files) {
      const context = getSubmoduleContext(filePath)
      if (context.isSubmoduleRoot) {
        filtered[changeType].push(filePath)
        continue
      }
      const isDeleted = changeType === ChangeTypeEnum.Deleted
      const sha = isDeleted ? context.previousSha : context.currentSha
      const isSymlink = await isSymlinkCached({
        cwd: context.cwd,
        filePath: context.relativePath,
        sha,
        preferDisk: !isDeleted
      })
      if (!isSymlink) {
        filtered[changeType].push(filePath)
      }
    }
  }
  return filtered
 }
 function* getFilePaths({
  inputs,
  filePaths,
--- a/src/changedFilesOutput.ts
+++ b/src/changedFilesOutput.ts
@@ -52,6 +52,13 @@ export const setOutputsAndGetModifiedAndChangedFilesStatus = async ({
    writeOutputFiles: inputs.writeOutputFiles,
    outputDir: inputs.outputDir
  })
  await setOutput({
    key: getOutputKey('any_added', outputPrefix),
    value: addedFiles.paths.length > 0,
    writeOutputFiles: inputs.writeOutputFiles,
    outputDir: inputs.outputDir,
    json: inputs.json
  })
  const copiedFiles = await getChangeTypeFiles({
    inputs,
--- a/src/commitSha.ts
+++ b/src/commitSha.ts
@@ -84,6 +84,7 @@ export interface DiffResult {
  targetBranch: string
  diff: string
  initialCommit?: boolean
  sameSha?: boolean
 }
 interface SHAForNonPullRequestEvent {
@@ -198,6 +199,19 @@ export const getSHAForNonPullRequestEvent = async ({
  if (inputs.baseSha && inputs.sha && currentBranch && targetBranch) {
    if (previousSha === currentSha) {
      if (inputs.skipSameSha) {
        core.info(
          `Skipping diff because previous sha ${previousSha} is equivalent to the current sha ${currentSha}.`
        )
        return {
          previousSha,
          currentSha,
          currentBranch,
          targetBranch,
          diff,
          sameSha: true
        }
      }
      core.error(
        `Similar commit hashes detected: previous sha: ${previousSha} is equivalent to the current sha: ${currentSha}.`
      )
@@ -305,6 +319,19 @@ export const getSHAForNonPullRequestEvent = async ({
  core.debug(`Current branch: ${currentBranch}`)
  if (!initialCommit && previousSha === currentSha) {
    if (inputs.skipSameSha) {
      core.info(
        `Skipping diff because previous sha ${previousSha} is equivalent to the current sha ${currentSha}.`
      )
      return {
        previousSha,
        currentSha,
        currentBranch,
        targetBranch,
        diff,
        sameSha: true
      }
    }
    core.error(
      `Similar commit hashes detected: previous sha: ${previousSha} is equivalent to the current sha: ${currentSha}.`
    )
@@ -430,6 +457,19 @@ export const getSHAForPullRequestEvent = async ({
  if (inputs.baseSha && inputs.sha && currentBranch && targetBranch) {
    if (previousSha === currentSha) {
      if (inputs.skipSameSha) {
        core.info(
          `Skipping diff because previous sha ${previousSha} is equivalent to the current sha ${currentSha}.`
        )
        return {
          previousSha,
          currentSha,
          currentBranch,
          targetBranch,
          diff,
          sameSha: true
        }
      }
      core.error(
        `Similar commit hashes detected: previous sha: ${previousSha} is equivalent to the current sha: ${currentSha}.`
      )
@@ -561,7 +601,9 @@ export const getSHAForPullRequestEvent = async ({
            core.info(
              'Merge base is not in the local history, fetching remote target branch again...'
            )
-            core.info(`Attempt ${i}/10`)
+            core.info(
              `Attempt ${i}/${inputs.fetchMissingHistoryMaxRetries || 10}`
            )
          }
        }
      }
@@ -606,6 +648,19 @@ export const getSHAForPullRequestEvent = async ({
  }
  if (previousSha === currentSha) {
    if (inputs.skipSameSha) {
      core.info(
        `Skipping diff because previous sha ${previousSha} is equivalent to the current sha ${currentSha}.`
      )
      return {
        previousSha,
        currentSha,
        currentBranch,
        targetBranch,
        diff,
        sameSha: true
      }
    }
    core.error(
      `Similar commit hashes detected: previous sha: ${previousSha} is equivalent to the current sha: ${currentSha}.`
    )
--- a/src/constant.ts
+++ b/src/constant.ts
@@ -22,6 +22,8 @@ export const DEFAULT_VALUES_OF_UNSUPPORTED_API_INPUTS: Partial<Inputs> = {
  fetchAdditionalSubmoduleHistory: false,
  dirNamesDeletedFilesIncludeOnlyDeletedDirs: false,
  excludeSubmodules: false,
  excludeSymlinks: false,
  skipSameSha: false,
  fetchMissingHistoryMaxRetries: 20,
  usePosixPathSeparator: false,
  tagsPattern: '*',
--- a/src/inputs.ts
+++ b/src/inputs.ts
@@ -55,6 +55,8 @@ export type Inputs = {
  negationPatternsFirst: boolean
  useRestApi: boolean
  excludeSubmodules: boolean
  excludeSymlinks: boolean
  skipSameSha: boolean
  fetchMissingHistoryMaxRetries?: number
  usePosixPathSeparator: boolean
  tagsPattern: string
@@ -249,6 +251,14 @@ export const getInputs = (): Inputs => {
    required: false
  })
  const excludeSymlinks = core.getBooleanInput('exclude_symlinks', {
    required: false
  })
  const skipSameSha = core.getBooleanInput('skip_same_sha', {
    required: false
  })
  const fetchMissingHistoryMaxRetries = core.getInput(
    'fetch_missing_history_max_retries',
    {required: false}
@@ -310,6 +320,8 @@ export const getInputs = (): Inputs => {
    fetchAdditionalSubmoduleHistory,
    dirNamesDeletedFilesIncludeOnlyDeletedDirs,
    excludeSubmodules,
    excludeSymlinks,
    skipSameSha,
    usePosixPathSeparator,
    tagsPattern,
    tagsIgnorePattern,
--- a/src/main.ts
+++ b/src/main.ts
@@ -5,8 +5,10 @@ import {
  processChangedFiles,
  ChangeTypeEnum,
  getAllDiffFiles,
  filterSymlinksFromChangedFiles,
  getChangedFilesFromGithubAPI,
-  getRenamedFiles
+  getRenamedFiles,
  ChangedFiles
 } from './changedFiles'
 import {
  DiffResult,
@@ -127,11 +129,57 @@ const getChangedFilesFromLocalGitHistory = async ({
    return
  }
  if (diffResult.sameSha) {
    core.info('Base and head SHAs are identical; no changed files to report.')
    const emptyChangedFiles: ChangedFiles = {
      [ChangeTypeEnum.Added]: [],
      [ChangeTypeEnum.Copied]: [],
      [ChangeTypeEnum.Deleted]: [],
      [ChangeTypeEnum.Modified]: [],
      [ChangeTypeEnum.Renamed]: [],
      [ChangeTypeEnum.TypeChanged]: [],
      [ChangeTypeEnum.Unmerged]: [],
      [ChangeTypeEnum.Unknown]: []
    }
    await processChangedFiles({
      filePatterns,
      allDiffFiles: emptyChangedFiles,
      inputs,
      yamlFilePatterns,
      workingDirectory
    })
    if (inputs.includeAllOldNewRenamedFiles) {
      await setOutput({
        key: 'all_old_new_renamed_files',
        value: inputs.json ? [] : '',
        writeOutputFiles: inputs.writeOutputFiles,
        outputDir: inputs.outputDir,
        json: inputs.json,
        safeOutput: inputs.safeOutput
      })
      await setOutput({
        key: 'all_old_new_renamed_files_count',
        value: '0',
        writeOutputFiles: inputs.writeOutputFiles,
        outputDir: inputs.outputDir,
        json: inputs.json
      })
    }
    core.info('All Done!')
    core.endGroup()
    return
  }
  core.info(
    `Retrieving changes between ${diffResult.previousSha} (${diffResult.targetBranch}) → ${diffResult.currentSha} (${diffResult.currentBranch})`
  )
-  const allDiffFiles = await getAllDiffFiles({
+  const submoduleShas: Record<
    string,
    {previousSha?: string; currentSha?: string}
  > = {}
  let allDiffFiles = await getAllDiffFiles({
    workingDirectory,
    diffSubmodule,
    diffResult,
@@ -139,8 +187,20 @@ const getChangedFilesFromLocalGitHistory = async ({
    outputRenamedFilesAsDeletedAndAdded,
    fetchAdditionalSubmoduleHistory: inputs.fetchAdditionalSubmoduleHistory,
    failOnInitialDiffError: inputs.failOnInitialDiffError,
-    failOnSubmoduleDiffError: inputs.failOnSubmoduleDiffError
+    failOnSubmoduleDiffError: inputs.failOnSubmoduleDiffError,
    submoduleShas
  })
  if (inputs.excludeSymlinks) {
    core.info('Excluding symlinks from the diff')
    allDiffFiles = await filterSymlinksFromChangedFiles({
      changedFiles: allDiffFiles,
      workingDirectory,
      diffResult,
      submodulePaths,
      submoduleShas
    })
  }
  core.debug(`All diff files: ${JSON.stringify(allDiffFiles)}`)
  core.info('All Done!')
  core.endGroup()
--- a/src/utils.ts
+++ b/src/utils.ts
@@ -152,6 +152,69 @@ export const exists = async (filePath: string): Promise<boolean> => {
  }
 }
 /**
 * Checks if a file is a symlink on disk
 * @param cwd - working directory
 * @param filePath - path to check
 * @returns file is a symlink
 */
 export const isSymlinkOnDisk = async ({
  cwd,
  filePath
 }: {
  cwd: string
  filePath: string
 }): Promise<boolean> => {
  try {
    const stat = await fs.lstat(path.join(cwd, filePath))
    return stat.isSymbolicLink()
  } catch {
    return false
  }
 }
 /**
 * Checks if a file is a symlink in a git tree
 * @param cwd - working directory
 * @param sha - commit sha
 * @param filePath - path to check
 * @returns file is a symlink
 */
 export const isSymlinkInGitTree = async ({
  cwd,
  sha,
  filePath
 }: {
  cwd: string
  sha: string
  filePath: string
 }): Promise<boolean> => {
  if (!sha) {
    return false
  }
  const {stdout, exitCode} = await exec.getExecOutput(
    'git',
    ['ls-tree', '-r', sha, '--', filePath],
    {
      cwd,
      ignoreReturnCode: true,
      silent: !core.isDebug()
    }
  )
  if (exitCode !== 0) {
    return false
  }
  const line = stdout.split('\n').find(Boolean)
  if (!line) {
    return false
  }
  const [mode] = line.split(/\s+/)
  return mode === '120000'
 }
 /**
 * Generates lines of a file as an async iterable iterator
 * @param filePath - path of file to read
@@ -819,14 +882,49 @@ export const cleanShaInput = async ({
  if (exitCode !== 0) {
    const octokit = github.getOctokit(token)
-    // If it's not a valid commit sha, assume it's a branch name and get the HEAD sha
+    const owner = github.context.repo.owner
-    const {data: refData} = await octokit.rest.git.getRef({
+    const repo = github.context.repo.repo
-      owner: github.context.repo.owner,
+    const isNotFoundError = (error: unknown): boolean =>
-      repo: github.context.repo.repo,
+      typeof error === 'object' &&
-      ref: `heads/${sha}`
+      error !== null &&
      'status' in error &&
      (error as {status?: number}).status === 404
    // If it's not a valid commit sha, assume it's a ref name first.
    try {
      const {data: refData} = await octokit.rest.git.getRef({
        owner,
        repo,
        ref: `heads/${sha}`
      })
      return refData.object.sha
    } catch (error) {
      if (!isNotFoundError(error)) {
        throw error
      }
    }
    try {
      const {data: refData} = await octokit.rest.git.getRef({
        owner,
        repo,
        ref: `tags/${sha}`
      })
      return refData.object.sha
    } catch (error) {
      if (!isNotFoundError(error)) {
        throw error
      }
    }
    const {data: commitData} = await octokit.rest.git.getCommit({
      owner,
      repo,
      commit_sha: sha
    })
-    return refData.object.sha
+    return commitData.sha
  }
  return stdout.trim()
@@ -1258,16 +1356,11 @@ export const getYamlFilePatterns = async ({
      const newFilePatterns = await getYamlFilePatternsFromContents({filePath})
      for (const key in newFilePatterns) {
        if (key in filePatterns) {
-          core.warning(
+          filePatterns[key] = [...filePatterns[key], ...newFilePatterns[key]]
-            `files_yaml_from_source_file: Duplicated key ${key} detected in ${filePath}, the ${filePatterns[key]} will be overwritten by ${newFilePatterns[key]}.`
+        } else {
-          )
+          filePatterns[key] = newFilePatterns[key]
        }
      }
      filePatterns = {
        ...filePatterns,
        ...newFilePatterns
      }
    }
  }
@@ -1279,9 +1372,12 @@ export const getYamlFilePatterns = async ({
    for (const key in newIgnoreFilePatterns) {
      if (key in filePatterns) {
-        core.warning(
+        filePatterns[key] = [
-          `files_ignore_yaml: Duplicated key ${key} detected, the ${filePatterns[key]} will be overwritten by ${newIgnoreFilePatterns[key]}.`
+          ...filePatterns[key],
-        )
+          ...newIgnoreFilePatterns[key]
        ]
      } else {
        filePatterns[key] = newIgnoreFilePatterns[key]
      }
    }
  }
@@ -1305,16 +1401,14 @@ export const getYamlFilePatterns = async ({
      for (const key in newIgnoreFilePatterns) {
        if (key in filePatterns) {
-          core.warning(
+          filePatterns[key] = [
-            `files_ignore_yaml_from_source_file: Duplicated key ${key} detected in ${filePath}, the ${filePatterns[key]} will be overwritten by ${newIgnoreFilePatterns[key]}.`
+            ...filePatterns[key],
-          )
+            ...newIgnoreFilePatterns[key]
          ]
        } else {
          filePatterns[key] = newIgnoreFilePatterns[key]
        }
      }
      filePatterns = {
        ...filePatterns,
        ...newIgnoreFilePatterns
      }
    }
  }
--- a/test/demo
+++ b/test/demo
--- a/test/new.md
+++ b/test/new.md
@@ -0,0 +1 @@
 This is a test markdown file
--- a/test/symlink-target.txt
+++ b/test/symlink-target.txt
@@ -0,0 +1 @@
 Symlink target fixture.
--- a/test/symlink-to-target
+++ b/test/symlink-to-target
@@ -0,0 +1 @@
 symlink-target.txt
--- a/test/test.txt
+++ b/test/test.txt
@@ -1 +1 @@
-This is a test file.
+This is a test file
--- a/yarn.lock
+++ b/yarn.lock