Updated README.md (#2473 )

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
update: sync-release-version.yml to use signed commits (#2472 )
2025-03-15 22:10:55 -06:00 · 2025-03-16 04:09:21 +00:00 · 2025-03-16 03:36:55 +00:00 · 2025-03-15 20:36:40 -06:00 · 2025-03-16 01:26:21 +00:00 · 2025-03-16 01:08:46 +00:00
5 changed files with 16 additions and 57 deletions
--- a/.github/workflows/greetings.yml
+++ b/.github/workflows/greetings.yml
@@ -1,18 +0,0 @@
-name: Greetings
-
-on: [pull_request_target, issues]
-
-permissions:
-  pull-requests: write
-  issues: write
-
-jobs:
-  greeting:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/first-interaction@v1
-        continue-on-error: true
-        with:
-          repo-token: ${{ secrets.PAT_TOKEN }}
-          issue-message: "Thanks for reporting this issue, don't forget to star this project if you haven't already to help us reach a wider audience."
-          pr-message: "Thanks for implementing a fix, could you ensure that the test covers your changes if applicable."
--- a/.github/workflows/sync-release-version.yml
+++ b/.github/workflows/sync-release-version.yml
@@ -41,8 +41,9 @@ jobs:
        with:
          base: "main"
          labels: "merge when passing"
+          sign-commits: true
          title: "Upgraded to ${{ steps.sync-release-version.outputs.new_version }}"
          branch: "upgrade-to-${{ steps.sync-release-version.outputs.new_version }}"
          commit-message: "Upgraded from ${{ steps.sync-release-version.outputs.old_version }} -> ${{ steps.sync-release-version.outputs.new_version }}"
          body: "View [CHANGES](https://github.com/${{ github.repository }}/compare/${{ steps.sync-release-version.outputs.old_version }}...${{ steps.sync-release-version.outputs.new_version }})"
-          token: ${{ secrets.PAT_TOKEN }}
+          token: ${{ secrets.GITHUB_TOKEN }}
--- a/.github/workflows/update-readme.yml
+++ b/.github/workflows/update-readme.yml
@@ -1,7 +1,7 @@
 name: Format README.md

 permissions:
-  contents: read
+  contents: write
  pull-requests: write

 on:
@@ -49,4 +49,5 @@ jobs:
          branch: "chore/update-readme"
          commit-message: "Updated README.md"
          body: "Updated README.md"
-          token: ${{ secrets.PAT_TOKEN }}
+          sign-commits: true
+          token: ${{ secrets.GITHUB_TOKEN }}
--- a/README.md
+++ b/README.md
@@ -17,6 +17,16 @@

 Effortlessly track all changed files and directories relative to a target branch, the current branch (preceding commit or the last remote commit), multiple branches, or custom commits returning **relative paths** from the project root using this GitHub action.

+> \[!WARNING]\
+> **Security Alert:** A critical security issue was identified in this action due to a compromised commit: [0e58ed8671d6b60d0890c21b07f8835ace038e67](https://github.com/tj-actions/changed-files/commit/0e58ed8671d6b60d0890c21b07f8835ace038e67).
+>
+> This commit has been **removed** from all tags and branches, and necessary measures have been implemented to prevent similar issues in the future.
+>
+> #### **Action Required:**
+>
+> *   **If your workflows reference this commit directly by its SHA**, you must update them immediately to avoid using the compromised version.
+> *   **If you are using tagged versions** (e.g., `v35`, `v44.5.1`), no action is required as these tags have been updated and are now safe to use.
+
 > \[!NOTE]
 >
 > *   This action solely identifies files that have changed for events such as [`pull_request*`, `push`, `merge_group`, `release`, and many more](#other-supported-events-electron). However, it doesn't detect pending uncommitted changes created during the workflow execution.
@@ -328,7 +338,7 @@ Support this project with a :star:
 <!-- AUTO-DOC-INPUT:START - Do not remove or modify this section -->

 ```yaml
- uses: tj-actions/changed-files@v45
+- uses: tj-actions/changed-files@v46
  id: changed-files
  with:
    # Github API URL.
--- a/renovate.json
+++ b/renovate.json
@@ -1,35 +0,0 @@
-{
-  "extends": ["config:recommended"],
-  "enabled": true,
-  "prHourlyLimit": 10,
-  "prConcurrentLimit": 5,
-  "rebaseWhen": "behind-base-branch",
-  "addLabels": ["dependencies", "merge when passing"],
-  "assignees": ["jackton1"],
-  "assignAutomerge": true,
-  "dependencyDashboard": true,
-  "dependencyDashboardAutoclose": true,
-  "lockFileMaintenance": {
-    "enabled": true,
-    "automerge": true
-  },
-  "nvm": {
-    "enabled": false
-  },
-  "packageRules": [
-    {
-      "matchUpdateTypes": ["minor", "patch", "pin", "digest"],
-      "automerge": true,
-      "rebaseWhen": "behind-base-branch",
-      "addLabels": ["merge when passing"]
-    },
-    {
-      "description": "docker images",
-      "matchCategories": ["docker"],
-      "matchUpdateTypes": ["minor", "patch", "pin", "digest"],
-      "rebaseWhen": "behind-base-branch",
-      "addLabels": ["merge when passing"],
-      "automerge": true
-    }
-  ]
-}
Author	SHA1	Message	Date
github-actions[bot]	2f7c5bfce2	Updated README.md (#2473 ) Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>	2025-03-15 22:10:55 -06:00
Tonye Jack	4189ec62c4	update: sync-release-version.yml to use signed commits (#2472 )	2025-03-16 04:09:21 +00:00
Tonye Jack	4cd184a1dd	update: sync-release-version.yml (#2471 )	2025-03-16 03:36:55 +00:00
github-actions[bot]	5cbf22026d	Updated README.md (#2469 ) Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>	2025-03-15 20:36:40 -06:00
Tonye Jack	0f1ffe6185	fix: update update-readme.yml to sign-commits (#2468 )	2025-03-16 01:26:21 +00:00
Tonye Jack	ddef03e37c	fix: update permission in update-readme.yml workflow (#2467 )	2025-03-16 01:08:46 +00:00
Tonye Jack	9c2df0d54a	fix: update github workflow update-readme.yml (#2466 )	2025-03-16 00:45:01 +00:00
Tonye Jack	65253327cf	docs: update docs to highlight security issues (#2465 )	2025-03-16 00:17:13 +00:00
Tonye Jack	e37e952786	Deleted renovate.json	2025-03-15 17:30:06 -06:00