chore(deps): bump actions/setup-node from 6.1.0 to 6.2.0 (#2766)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

.all-contributorsrc

@@ -272,6 +272,16 @@
       "contributions": [
         "doc"
       ]
+    },
+    {
+      "login": "Jellyfrog",
+      "name": "Jellyfrog",
+      "avatar_url": "https://avatars.githubusercontent.com/u/759887?v=4",
+      "profile": "https://github.com/Jellyfrog",
+      "contributions": [
+        "code",
+        "doc"
+      ]
     }
   ],
   "contributorsPerLine": 7,

.github/workflows/codacy-analysis.yml

@@ -29,12 +29,12 @@ jobs:
     steps:
       # Checkout the repository to the GitHub Actions runner
       - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
 
       # Execute Codacy Analysis CLI and generate a SARIF output with the security issues identified during the analysis
       - name: Run Codacy Analysis CLI
         continue-on-error: true
-        uses: codacy/codacy-analysis-cli-action@v4.4.5
+        uses: codacy/codacy-analysis-cli-action@562ee3e92b8e92df8b67e0a5ff8aa8e261919c08 # v4.4.7
         with:
           # Check https://github.com/codacy/codacy-analysis-cli#project-token to get your project token from your Codacy repository
           # You can also omit the token and run the tools that support default configurations
@@ -51,6 +51,6 @@ jobs:
       # Upload the SARIF file generated in the previous step
       - name: Upload SARIF results file
         continue-on-error: true
-        uses: github/codeql-action/upload-sarif@v3
+        uses: github/codeql-action/upload-sarif@cdefb33c0f6224e58673d9004f47f7cb3e328b89 # v3.29.5
         with:
           sarif_file: results.sarif

.github/workflows/codeql.yml

@@ -43,11 +43,11 @@ jobs:
 
     steps:
     - name: Checkout repository
-      uses: actions/checkout@v4
+      uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
 
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL
-      uses: github/codeql-action/init@v3
+      uses: github/codeql-action/init@cdefb33c0f6224e58673d9004f47f7cb3e328b89 # v3.29.5
       with:
         languages: ${{ matrix.language }}
         # If you wish to specify custom queries, you can do so here or in a config file.
@@ -61,7 +61,7 @@ jobs:
     # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
     # If this step fails, then you should remove it and run the build manually (see below)
     - name: Autobuild
-      uses: github/codeql-action/autobuild@v3
+      uses: github/codeql-action/autobuild@cdefb33c0f6224e58673d9004f47f7cb3e328b89 # v3.29.5
 
     # ℹ️ Command-line programs to run using the OS shell.
     # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
@@ -74,6 +74,6 @@ jobs:
     #   ./location_of_script_within_repo/buildscript.sh
 
     - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@v3
+      uses: github/codeql-action/analyze@cdefb33c0f6224e58673d9004f47f7cb3e328b89 # v3.29.5
       with:
         category: "/language:${{matrix.language}}"

.github/workflows/issue-comment-job-example.yml

@@ -19,7 +19,7 @@ jobs:
           NUMBER: ${{ github.event.issue.number }}
 
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           submodules: true
           fetch-depth: 0
@@ -104,7 +104,7 @@ jobs:
           NUMBER: ${{ github.event.issue.number }}
 
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           submodules: true
           fetch-depth: 0

.github/workflows/manual-triggered-job-example.yml

@@ -5,6 +5,12 @@ permissions:
 
 on:
   workflow_dispatch:
+    inputs:
+      files:
+        required: false
+        type: string
+        default: |
+          **.md **/**.md test/*.txt
 
 jobs:
   test:
@@ -18,7 +24,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           submodules: true
           fetch-depth: 0
@@ -35,8 +41,8 @@ jobs:
         id: changed-files-glob
         uses: ./
         with:
-          files: |
-            test/*.txt
+          files: ${{ inputs.files }}
+          files_separator: " "  # Space delimited files (default is "\n")
 
       - name: Show output
         run: |

.github/workflows/matrix-example.yml

@@ -17,7 +17,7 @@ jobs:
       matrix: ${{ steps.changed-files.outputs.all_changed_files }}
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           fetch-depth: 0
       - name: Get changed files
@@ -39,7 +39,19 @@ jobs:
       fail-fast: false
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
       - name: Test
         run: |
           echo ${{ matrix.files }}
+
+  conditional-job:
+    name: Run Conditional Job
+    runs-on: ubuntu-latest
+    needs: [changed-files]
+    if: contains(needs.changed-files.outputs.matrix, 'README.md') # Conditional check for README
+    steps:
+      - name: Checkout
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+      - name: Execute Conditional Logic
+        run: |
+          echo "README.md has been changed. Running conditional job."

.github/workflows/multi-job-example.yml

@@ -19,7 +19,7 @@ jobs:
       all_changed_files: ${{ steps.changed-files.outputs.all_changed_files }}
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           fetch-depth: 0
       - name: Get changed files
@@ -45,7 +45,7 @@ jobs:
       all_changed_files: ${{ steps.changed-files.outputs.all_changed_files }}
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           fetch-depth: 0
       - name: Get changed files

.github/workflows/sync-release-version.yml

@@ -13,13 +13,13 @@ jobs:
   update-version:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           fetch-depth: 0
       - name: Run release-tagger
-        uses: tj-actions/release-tagger@v4
+        uses: tj-actions/release-tagger@1a9264b0fd99a1ef92c4fd2f077f292900cc79b6 # v4.0.0
       - name: Sync release version.
-        uses: tj-actions/sync-release-version@v13
+        uses: tj-actions/sync-release-version@2a7ef0deb39b3ecce887ee99d2261c6cef989d84 # v13.16
         id: sync-release-version
         with:
           pattern: '${{ github.repository }}@'
@@ -28,7 +28,7 @@ jobs:
           paths: |
             README.md
       - name: Sync release package version.
-        uses: tj-actions/sync-release-version@v13
+        uses: tj-actions/sync-release-version@2a7ef0deb39b3ecce887ee99d2261c6cef989d84 # v13.16
         id: sync-release-package-version
         with:
           pattern: '"version": "'
@@ -36,9 +36,9 @@ jobs:
           paths: |
             package.json
       - name: Run git-cliff
-        uses: tj-actions/git-cliff@v1
+        uses: tj-actions/git-cliff@679041f051a4d2ab452f7e5e7b0eed2abee21131 # v2.2.0
       - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v7.0.8
+        uses: peter-evans/create-pull-request@98357b18bf14b5342f975ff684046ec3b2a07725 # v8.0.0
         with:
           base: "main"
           labels: "merge when passing"

.github/workflows/test.yml

@@ -38,17 +38,17 @@ jobs:
       contents: write
       pull-requests: read
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           persist-credentials: false
           fetch-depth: 0
           repository: ${{ github.event.pull_request.head.repo.full_name }}
 
-      - name: Use Node.js 20.x
-        uses: actions/setup-node@v4.3.0
+      - name: Use Node.js 24.x
+        uses: actions/setup-node@6044e13b5dc448c55e2357c09f80417699197238 # v6.2.0
         with:
           cache: 'yarn'
-          node-version: '20.x'
+          node-version: '24.x'
 
       - name: Create coverage directory and clover.xml
         run: |
@@ -60,10 +60,9 @@ jobs:
           yarn install
 
       - name: Run eslint on changed files
-        uses: tj-actions/eslint-changed-files@v25
+        uses: tj-actions/eslint-changed-files@536c35c8184b8bbd361d3703aa63439e0895c340 # v25.3.2
         if: github.event_name == 'pull_request'
         with:
-          token: ${{ secrets.PAT_TOKEN }}
           config_path: ".eslintrc.json"
           ignore_path: ".eslintignore"
 
@@ -73,38 +72,29 @@ jobs:
         env:
           GITHUB_EVENT_PULL_REQUEST_HEAD_REPO_FORK: ${{ github.event.pull_request.head.repo.fork }}
 
+      - name: Upload build assets
+        uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
+        with:
+          name: build-assets
+          path: dist
+
       - name: Verify Changed files
-        uses: tj-actions/verify-changed-files@v20
+        uses: tj-actions/verify-changed-files@a1c6acee9df209257a246f2cc6ae8cb6581c1edf # v20.0.4
         if: github.actor != 'dependabot[bot]'
-        id: changed_files
+        id: verify_changed_files
         with:
           files: |
             src
             dist
 
-      - name: Commit files
-        if: steps.changed_files.outputs.files_changed == 'true' && github.event_name == 'pull_request'
+      - name: Verify outstanding changes
+        if: steps.verify_changed_files.outputs.files_changed == 'true' && github.event_name == 'pull_request'
         run: |
-          git config --local user.email "action@github.com"
-          git config --local user.name "GitHub Action"
-          git add src dist
-          git commit -m "Added missing changes and modified dist assets."
-
-      - name: Push changes
-        if: steps.changed_files.outputs.files_changed == 'true' && github.event_name == 'pull_request'
-        uses: ad-m/github-push-action@master
-        with:
-          github_token: ${{ secrets.GITHUB_TOKEN }}
-          branch: ${{ github.head_ref }}
-
-      - name: Upload build assets
-        uses: actions/upload-artifact@v4
-        with:
-          name: build-assets
-          path: dist
+          echo "Uncommitted build/lint changes detected. Please run 'yarn all' locally and push the changes for review."
+          exit 1
 
       - name: Run codacy-coverage-reporter
-        uses: codacy/codacy-coverage-reporter-action@v1
+        uses: codacy/codacy-coverage-reporter-action@89d6c85cfafaec52c72b6c5e8b2878d33104c699 # v1.3.0
         continue-on-error: true
         with:
           project-token: ${{ secrets.CODACY_PROJECT_TOKEN }}
@@ -119,7 +109,7 @@ jobs:
       contents: read
     steps:
       - name: Checkout into dir1
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           repository: ${{ github.event.pull_request.head.repo.full_name }}
           submodules: true
@@ -127,7 +117,7 @@ jobs:
           path: dir1
 
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
           path: dir1/dist
@@ -153,13 +143,13 @@ jobs:
           bash
 
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
           path: dir2/dist
 
       - name: Checkout into dir2
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           repository: ${{ github.event.pull_request.head.repo.full_name }}
           submodules: true
@@ -195,13 +185,13 @@ jobs:
       contents: read
     steps:
       - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           repository: ${{ github.event.pull_request.head.repo.full_name }}
           fetch-depth: 0
 
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
 
@@ -255,13 +245,13 @@ jobs:
 
     steps:
       - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           repository: ${{ github.event.pull_request.head.repo.full_name }}
           fetch-depth: 0
 
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
 
@@ -285,6 +275,113 @@ jobs:
         shell:
           bash
 
+  test-skip-same-base-and-commit-sha:
+    name: Test changed-files skip same base and commit sha
+    runs-on: ubuntu-latest
+    needs: build
+    if: needs.build.outputs.files_changed != 'true'
+    permissions:
+      contents: read
+
+    steps:
+      - name: Checkout branch
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+        with:
+          repository: ${{ github.event.pull_request.head.repo.full_name }}
+          fetch-depth: 0
+
+      - name: Download build assets
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
+        with:
+          name: build-assets
+
+      - name: Get head SHA
+        id: head-sha
+        run: |
+          echo "sha=$(git rev-parse HEAD)" >> "$GITHUB_OUTPUT"
+        shell:
+          bash
+
+      - name: Run changed-files with same base and commit sha
+        id: changed-files
+        uses: ./
+        with:
+          base_sha: ${{ steps.head-sha.outputs.sha }}
+          sha: ${{ steps.head-sha.outputs.sha }}
+          skip_same_sha: true
+
+      - name: Verify empty outputs
+        if: steps.changed-files.outputs.all_changed_files_count != '0' || steps.changed-files.outputs.any_changed != 'false'
+        run: |
+          echo "Expected empty outputs; got count=${{ steps.changed-files.outputs.all_changed_files_count }} any_changed=${{ steps.changed-files.outputs.any_changed }}"
+          exit 1
+        shell:
+          bash
+
+      - name: Show output
+        run: |
+          echo '${{ toJSON(steps.changed-files.outputs) }}'
+        shell:
+          bash
+
+  test-exclude-symlinks:
+    name: Test changed-files exclude symlinks
+    runs-on: ubuntu-latest
+    needs: build
+    if: needs.build.outputs.files_changed != 'true'
+    permissions:
+      contents: read
+
+    steps:
+      - name: Checkout branch
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+        with:
+          repository: ${{ github.event.pull_request.head.repo.full_name }}
+          fetch-depth: 0
+
+      - name: Download build assets
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
+        with:
+          name: build-assets
+
+      - name: Run changed-files without symlink exclusion
+        id: changed-files-symlink-included
+        uses: ./
+        with:
+          base_sha: 2f2f6cf099167fa7d7c6aba8fc0421327e181a5a
+          sha: 8c4da285a3cb8b621b4a5cc251d6282b4b0a67a5
+
+      - name: Verify symlink is present
+        if: "!contains(steps.changed-files-symlink-included.outputs.added_files, 'test/symlink-to-target')"
+        run: |
+          echo "Expected symlink to be present in added_files; got ${{ steps.changed-files-symlink-included.outputs.added_files }}"
+          exit 1
+        shell:
+          bash
+
+      - name: Run changed-files excluding symlinks
+        id: changed-files-symlink-excluded
+        uses: ./
+        with:
+          base_sha: 2f2f6cf099167fa7d7c6aba8fc0421327e181a5a
+          sha: 8c4da285a3cb8b621b4a5cc251d6282b4b0a67a5
+          exclude_symlinks: true
+
+      - name: Verify symlink is excluded
+        if: "contains(steps.changed-files-symlink-excluded.outputs.added_files, 'test/symlink-to-target') || contains(steps.changed-files-symlink-excluded.outputs.all_changed_files, 'test/symlink-to-target')"
+        run: |
+          echo "Expected symlink to be excluded; got added=${{ steps.changed-files-symlink-excluded.outputs.added_files }} all=${{ steps.changed-files-symlink-excluded.outputs.all_changed_files }}"
+          exit 1
+        shell:
+          bash
+
+      - name: Show output
+        run: |
+          echo '${{ toJSON(steps.changed-files-symlink-included.outputs) }}'
+          echo '${{ toJSON(steps.changed-files-symlink-excluded.outputs) }}'
+        shell:
+          bash
+
   test-using-branch-names-for-base-sha-and-sha-inputs:
     name: Test using branch names for base_sha and sha inputs
     runs-on: ubuntu-latest
@@ -299,13 +396,13 @@ jobs:
 
     steps:
       - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           repository: ${{ github.event.pull_request.head.repo.full_name }}
           fetch-depth: 0
 
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
 
@@ -338,13 +435,13 @@ jobs:
 
     steps:
       - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           repository: ${{ github.event.pull_request.head.repo.full_name }}
           fetch-depth: ${{ matrix.fetch-depth }}
 
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
 
@@ -372,12 +469,12 @@ jobs:
 
     steps:
       - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           ref: ${{ github.event.pull_request.head.sha }}
 
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
 
@@ -406,14 +503,14 @@ jobs:
 
     steps:
       - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           fetch-depth: ${{ matrix.fetch-depth }}
           persist-credentials: false
           repository: ${{ github.event.pull_request.head.repo.full_name }}
 
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
 
@@ -436,10 +533,10 @@ jobs:
       contents: read
     steps:
       - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
 
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
 
@@ -491,10 +588,10 @@ jobs:
       contents: read
     steps:
       - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
 
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
 
@@ -546,7 +643,7 @@ jobs:
       pull-requests: read
     steps:
       - name: Checkout into dir1
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           repository: ${{ github.event.pull_request.head.repo.full_name }}
           submodules: true
@@ -554,7 +651,7 @@ jobs:
           path: dir1
 
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
           path: dir1/dist
@@ -578,14 +675,14 @@ jobs:
       contents: read
     steps:
       - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           repository: ${{ github.event.pull_request.head.repo.full_name }}
           submodules: true
           fetch-depth: 0
 
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
           path: dist
@@ -615,7 +712,7 @@ jobs:
       contents: read
     steps:
       - name: Checkout into dir1
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           repository: ${{ github.event.pull_request.head.repo.full_name }}
           submodules: true
@@ -623,7 +720,7 @@ jobs:
           path: dir1
 
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
           path: dir1/dist
@@ -654,14 +751,14 @@ jobs:
 
     steps:
       - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           ref: ${{ github.event.pull_request.head.sha || github.sha }}
           submodules: recursive
           fetch-depth: ${{ matrix.fetch-depth }}
 
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
 
@@ -720,14 +817,14 @@ jobs:
 
     steps:
       - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           ref: ${{ github.event.pull_request.head.sha || github.sha }}
           submodules: recursive
           fetch-depth: ${{ matrix.fetch-depth }}
 
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
 
@@ -815,14 +912,14 @@ jobs:
 
     steps:
       - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           ref: ${{ github.event.pull_request.head.sha || github.sha }}
           submodules: recursive
           fetch-depth: ${{ matrix.fetch-depth }}
 
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
 
@@ -1001,7 +1098,7 @@ jobs:
       contents: read
     steps:
       - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           ref: a52f8621d26d5d9f54b80f74bda2d9eedff94693
           repository: ${{ github.event.pull_request.head.repo.full_name }}
@@ -1039,7 +1136,7 @@ jobs:
       contents: read
     steps:
       - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           ref: ${{ github.event.pull_request.head.sha }}
           repository: ${{ github.event.pull_request.head.repo.full_name }}
@@ -1118,7 +1215,7 @@ jobs:
         
     steps:
       - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           ref: ${{ github.event.pull_request.head.sha }}
           repository: ${{ github.event.pull_request.head.repo.full_name }}
@@ -1126,7 +1223,7 @@ jobs:
           fetch-depth: ${{ matrix.fetch-depth }}
   
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
 
@@ -1171,13 +1268,13 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           submodules: true
           repository: ${{ github.event.pull_request.head.repo.full_name }}
           fetch-depth: ${{ matrix.fetch-depth }}
       - name: Download build assets
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: build-assets
       - name: Dump GitHub context
@@ -2162,9 +2259,9 @@ jobs:
           bash
       - name: Get branch name
         id: branch-name
-        uses: tj-actions/branch-names@v8
+        uses: tj-actions/branch-names@5250492686b253f06fa55861556d1027b067aeb5 # v9.0.2
         if: github.event_name == 'pull_request' && matrix.fetch-depth == 0
-      - uses: nrwl/nx-set-shas@v4
+      - uses: nrwl/nx-set-shas@3e9ad7370203c1e93d109be57f3b72eb0eb511b1 # v4.4.0
         id: last_successful_commit
         if: github.event_name == 'pull_request' && github.event.action != 'closed' && matrix.fetch-depth == 0
         with:

.github/workflows/update-readme.yml

@@ -13,22 +13,22 @@ jobs:
   sync-assets:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           fetch-depth: 0
 
       - name: Run auto-doc
-        uses: tj-actions/auto-doc@v3
+        uses: tj-actions/auto-doc@b10ceedffd794ec29a8fa8700529f40c1b64a951 # v3.6.0
         with:
           use_code_blocks: true
           use_major_version: true
           use_tag_commit_hash: true
 
       - name: Run remark
-        uses: tj-actions/remark@v3
+        uses: tj-actions/remark@10fc40701928cbafcc4a2d241679579d218144ff # v3
 
       - name: Verify Changed files
-        uses: tj-actions/verify-changed-files@v20
+        uses: tj-actions/verify-changed-files@a1c6acee9df209257a246f2cc6ae8cb6581c1edf # v20.0.4
         id: verify_changed_files
         with:
           files: |
@@ -42,7 +42,7 @@ jobs:
 
       - name: Create Pull Request
         if: failure()
-        uses: peter-evans/create-pull-request@v7
+        uses: peter-evans/create-pull-request@98357b18bf14b5342f975ff684046ec3b2a07725 # v8.0.0
         with:
           base: "main"
           labels: "merge when passing"

.github/workflows/workflow-run-example.yml

@@ -13,7 +13,7 @@ jobs:
     if: ${{ github.event.workflow_run.conclusion == 'success' }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
 
       - name: Get changed files
         id: changed-files
@@ -29,7 +29,7 @@ jobs:
     if: ${{ github.event.workflow_run.conclusion == 'failure' }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
 
       - name: Get changed files
         id: changed-files

.nvmrc

@@ -1 +1 @@
-20
+24

README.md

@@ -3,32 +3,20 @@
 [![Windows](https://img.shields.io/badge/Windows-0078D6?style=for-the-badge\&logo=windows\&logoColor=white)](https://docs.github.com/en/actions/reference/workflow-syntax-for-github-actions#jobsjob_idruns-on)
 [![Public workflows that use this action.](https://img.shields.io/endpoint?style=for-the-badge\&url=https%3A%2F%2Fused-by.vercel.app%2Fapi%2Fgithub-actions%2Fused-by%3Faction%3Dtj-actions%2Fchanged-files%26package_id%3DUGFja2FnZS0yOTQyNTU4MDk5%26badge%3Dtrue)](https://github.com/search?o=desc\&q=tj-actions+changed-files+language%3AYAML\&s=\&type=Code)
 
-[![Codacy Badge](https://app.codacy.com/project/badge/Grade/4fe2f49c3ab144b0bbe4effc85a061a0)](https://app.codacy.com/gh/tj-actions/changed-files/dashboard?utm_source=gh\&utm_medium=referral\&utm_content=\&utm_campaign=Badge_grade)
+[![Codacy Badge](https://app.codacy.com/project/badge/Grade/d59579c4b70e453a93cd2147b5d57384)](https://app.codacy.com/gh/tj-actions/changed-files/dashboard?utm_source=gh\&utm_medium=referral\&utm_content=\&utm_campaign=Badge_grade)
 [![CI](https://github.com/tj-actions/changed-files/actions/workflows/test.yml/badge.svg)](https://github.com/tj-actions/changed-files/actions/workflows/test.yml)
 [![Update release version.](https://github.com/tj-actions/changed-files/actions/workflows/sync-release-version.yml/badge.svg)](https://github.com/tj-actions/changed-files/actions/workflows/sync-release-version.yml)
 
 <!-- ALL-CONTRIBUTORS-BADGE:START - Do not remove or modify this section -->
-[![All Contributors](https://img.shields.io/badge/all_contributors-29-orange.svg?style=flat-square)](#contributors-)
+
+[![All Contributors](https://img.shields.io/badge/all_contributors-30-orange.svg?style=flat-square)](#contributors-)
+
 <!-- ALL-CONTRIBUTORS-BADGE:END -->
 
 ## changed-files
 
 Effortlessly track all changed files and directories relative to a target branch, the current branch (preceding commit or the last remote commit), multiple branches, or custom commits returning **relative paths** from the project root using this GitHub action.
 
-> \[!WARNING]\
-> **Security Alert:** A critical security issue was identified in this action due to a compromised commit.
->
-> This commit has been **removed** from all tags and branches, and necessary measures have been implemented to prevent similar issues in the future.
->
-> #### **Action Required:**
->
-> *   **Review your workflows executed between March 14 and March 15.** If you notice unexpected output under the `changed-files` section, decode  it using the following command:  `echo 'xxx' | base64 -d | base64 -d`\
->     If the output contains sensitive information (e.g., tokens or secrets), **revoke and rotate those secrets immediately**.
-> *   **If your workflows reference this commit directly by its SHA**, you must update them immediately to avoid using the compromised version.
-> *   **If you are using tagged versions** (e.g., `v35`, `v44.5.1`), no action is required as these tags have been updated and are now safe to use.
->
-> Additionally, as a precaution, we recommend rotating any secrets that may have been exposed during this timeframe to ensure the continued security of your workflows.
-
 > \[!NOTE]
 >
 > *   This action solely identifies files that have changed for events such as [`pull_request*`, `push`, `merge_group`, `release`, and many more](#other-supported-events-electron). However, it doesn't detect pending uncommitted changes created during the workflow execution.
@@ -57,6 +45,7 @@ Effortlessly track all changed files and directories relative to a target branch
 *   [Credits 👏](#credits-)
 *   [Report Bugs 🐛](#report-bugs-)
 *   [Contributors ✨](#contributors-)
+*   [💼 Automate Your Job Search Too](#-automate-your-job-search-too)
 
 ## Features 🚀
 
@@ -83,7 +72,7 @@ Effortlessly track all changed files and directories relative to a target branch
     *   Between the last remote branch commit and the current HEAD.
 *   Restricts change detection to a subset of files and directories:
     *   Provides boolean output indicating changes in specific files.
-    *   Uses [Glob pattern](https://codepen.io/mrmlnc/pen/OXQjMe) matching.
+    *   Uses [Glob pattern](https://en.wikipedia.org/wiki/Glob_\(programming\)) matching.
         *   Supports Globstar.
         *   Supports brace expansion.
         *   Supports negation.
@@ -134,7 +123,7 @@ jobs:
       # -----------------------------------------------------------------------------------------------------------
       - name: Get changed files
         id: changed-files
-        uses: tj-actions/changed-files@v46
+        uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
         # To compare changes between the current commit and the last pushed remote commit set `since_last_remote_commit: true`. e.g
         # with:
         #   since_last_remote_commit: true 
@@ -152,7 +141,7 @@ jobs:
       # -----------------------------------------------------------------------------------------------------------
       - name: Get all changed markdown files
         id: changed-markdown-files
-        uses: tj-actions/changed-files@v46
+        uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
         with:
           # Avoid using single or double quotes for multiline patterns
           files: |
@@ -173,7 +162,7 @@ jobs:
       # -----------------------------------------------------------------------------------------------------------
       - name: Get all test, doc and src files that have changed
         id: changed-files-yaml
-        uses: tj-actions/changed-files@v46
+        uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
         with:
           files_yaml: |
             doc:
@@ -208,7 +197,7 @@ jobs:
       # -----------------------------------------------------------------------------------------------------------
       - name: Get changed files in the docs folder
         id: changed-files-specific
-        uses: tj-actions/changed-files@v46
+        uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
         with:
           files: docs/*.{js,html}  # Alternatively using: `docs/**`
           files_ignore: docs/static.js
@@ -250,7 +239,7 @@ jobs:
     steps:
       - name: Get changed files
         id: changed-files
-        uses: tj-actions/changed-files@v46
+        uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
 
       - name: List all changed files
         env:
@@ -293,7 +282,7 @@ jobs:
 
       - name: Get changed files
         id: changed-files
-        uses: tj-actions/changed-files@v46
+        uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
       # NOTE: `since_last_remote_commit: true` is implied by default and falls back to the previous local commit.
 
       - name: List all changed files
@@ -340,7 +329,7 @@ Support this project with a :star:
 <!-- AUTO-DOC-INPUT:START - Do not remove or modify this section -->
 
 ```yaml
-- uses: tj-actions/changed-files@2f7c5bfce28377bc069a65ba478de0a74aa0ca32 # v46
+- uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
   id: changed-files
   with:
     # Github API URL.
@@ -423,6 +412,11 @@ Support this project with a :star:
     # Default: "false"
     exclude_submodules: ''
 
+    # Exclude symlinks from changed files.
+    # Type: boolean
+    # Default: "false"
+    exclude_symlinks: ''
+
     # Fail when the initial diff 
     # fails. 
     # Type: boolean
@@ -687,6 +681,12 @@ Support this project with a :star:
     # Default: "false"
     skip_initial_fetch: ''
 
+    # Do not fail when base 
+    # and head SHAs are identical. 
+    # Type: boolean
+    # Default: "false"
+    skip_same_sha: ''
+
     # Tags pattern to ignore.
     # Type: string
     tags_ignore_pattern: ''
@@ -773,6 +773,7 @@ Support this project with a :star:
 |                   <a name="output_all_modified_files_count"></a>[all\_modified\_files\_count](#output_all_modified_files_count)                   | string |                                                                                                                                       Returns the number of `all_modified_files`                                                                                                                                        |
 |                 <a name="output_all_old_new_renamed_files"></a>[all\_old\_new\_renamed\_files](#output_all_old_new_renamed_files)                  | string | Returns only files that are <br>Renamed and lists their old <br>and new names. **NOTE:** This <br>requires setting `include_all_old_new_renamed_files` to `true`. <br>Also, keep in mind that <br>this output is global and <br>wouldn't be nested in outputs <br>generated when the `*_yaml_*` input <br>is used. (R)  |
 |        <a name="output_all_old_new_renamed_files_count"></a>[all\_old\_new\_renamed\_files\_count](#output_all_old_new_renamed_files_count)         | string |                                                                                                                                    Returns the number of `all_old_new_renamed_files`                                                                                                                                    |
+|                                         <a name="output_any_added"></a>[any\_added](#output_any_added)                                          | string |                                                                                                Returns `true` when any of <br>the filenames provided using the <br>`files*` or `files_ignore*` inputs have been added.                                                                                                  |
 |                                      <a name="output_any_changed"></a>[any\_changed](#output_any_changed)                                       | string |                      Returns `true` when any of <br>the filenames provided using the <br>`files*` or `files_ignore*` inputs have changed. This <br>defaults to `true` when no <br>patterns are specified. i.e. *includes a combination of all added, copied, modified and renamed files (ACMR)*.                        |
 |                                      <a name="output_any_deleted"></a>[any\_deleted](#output_any_deleted)                                       | string |                                                             Returns `true` when any of <br>the filenames provided using the <br>`files*` or `files_ignore*` inputs have been deleted. <br>This defaults to `true` when <br>no patterns are specified. (D)                                                               |
 |                                     <a name="output_any_modified"></a>[any\_modified](#output_any_modified)                                     | string |            Returns `true` when any of <br>the filenames provided using the <br>`files*` or `files_ignore*` inputs have been modified. <br>This defaults to `true` when <br>no patterns are specified. i.e. <br>*includes a combination of all added, copied, modified, renamed, and deleted files (ACMRD)*.             |
@@ -825,7 +826,7 @@ The format of the version string is as follows:
 ...
     - name: Get changed files
       id: changed-files
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
 ...
 ```
 
@@ -838,7 +839,7 @@ The format of the version string is as follows:
 ...
     - name: Get changed files
       id: changed-files
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
       with:
         safe_output: false # set to false because we are using an environment variable to store the output and avoid command injection.
 
@@ -861,7 +862,7 @@ The format of the version string is as follows:
 ...
     - name: Get all changed files and use a comma separator in the output
       id: changed-files
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
       with:
         separator: ","
 ...
@@ -878,7 +879,7 @@ See [inputs](#inputs) for more information.
 ...
     - name: Get changed files
       id: changed-files
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
 
     - name: List all added files
       env:
@@ -901,7 +902,7 @@ See [outputs](#outputs) for a list of all available outputs.
 ...
     - name: Get changed files
       id: changed-files
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
 
     - name: Run a step if my-file.txt was modified
       if: contains(steps.changed-files.outputs.modified_files, 'my-file.txt')
@@ -922,7 +923,7 @@ See [outputs](#outputs) for a list of all available outputs.
 
    - name: Get changed files and write the outputs to a Txt file
      id: changed-files-write-output-files-txt
-     uses: tj-actions/changed-files@v46
+     uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
      with:
        write_output_files: true
 
@@ -941,7 +942,7 @@ See [outputs](#outputs) for a list of all available outputs.
 ...
    - name: Get changed files and write the outputs to a JSON file
      id: changed-files-write-output-files-json
-     uses: tj-actions/changed-files@v46
+     uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
      with:
        json: true
        write_output_files: true
@@ -961,7 +962,7 @@ See [outputs](#outputs) for a list of all available outputs.
 ...
     - name: Get changed files
       id: changed-files
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
       with:
         files: |
           my-file.txt
@@ -984,7 +985,7 @@ See [inputs](#inputs) for more information.
 ...
     - name: Get changed files
       id: changed-files-specific
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
       with:
         files: |
           my-file.txt
@@ -1035,7 +1036,7 @@ See [outputs](#outputs) for a list of all available outputs.
 ...
     - name: Get changed files using a source file or list of file(s) to populate to files input.
       id: changed-files-specific-source-file
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
       with:
         files_from_source_file: test/changed-files-list.txt
 ...
@@ -1052,7 +1053,7 @@ See [inputs](#inputs) for more information.
 ...
     - name: Get changed files using a source file or list of file(s) to populate to files input and optionally specify more files.
       id: changed-files-specific-source-file-and-specify-files
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
       with:
         files_from_source_file: |
           test/changed-files-list.txt
@@ -1073,7 +1074,7 @@ See [inputs](#inputs) for more information.
 ...
     - name: Get changed files using a different SHA
       id: changed-files
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
       with:
         sha: ${{ github.event.pull_request.head.sha }}
 ...
@@ -1090,7 +1091,7 @@ See [inputs](#inputs) for more information.
 ...
     - name: Get changed files using a different base SHA
       id: changed-files
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
       with:
         base_sha: ${{ github.event.pull_request.base.sha }}
 ...
@@ -1122,7 +1123,7 @@ jobs:
 
       - name: Get changed files
         id: changed-files
-        uses: tj-actions/changed-files@v46
+        uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
 
       - name: List changed files
         env:
@@ -1132,7 +1133,7 @@ jobs:
 
       - name: Get changed files in the .github folder
         id: changed-files-specific
-        uses: tj-actions/changed-files@v46
+        uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
         with:
           files: .github/**
 
@@ -1163,7 +1164,7 @@ See [inputs](#inputs) for more information.
 
     - name: Run changed-files with defaults in dir1
       id: changed-files-for-dir1
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
       with:
         path: dir1
 
@@ -1188,13 +1189,13 @@ See [inputs](#inputs) for more information.
 ...
     - name: Run changed-files with quotepath disabled
       id: changed-files-quotepath
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
       with:
         quotepath: "false"
 
     - name: Run changed-files with quotepath disabled for a specified list of file(s)
       id: changed-files-quotepath-specific
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
       with:
         files: test/test-è.txt
         quotepath: "false"
@@ -1227,7 +1228,7 @@ See [inputs](#inputs) for more information.
 
       - name: Run changed-files with the commit of the last successful test workflow run
         id: changed-files-base-sha-push
-        uses: tj-actions/changed-files@v46
+        uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
         with:
           base_sha: ${{ steps.last_successful_commit_push.outputs.base }}
 ...
@@ -1254,7 +1255,7 @@ See [inputs](#inputs) for more information.
 
       - name: Run changed-files with the commit of the last successful test workflow run on the main branch
         id: changed-files-base-sha-pull-request
-        uses: tj-actions/changed-files@v46
+        uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
         with:
           base_sha: ${{ steps.last_successful_commit_pull_request.outputs.base }}
 ...
@@ -1280,7 +1281,7 @@ See [inputs](#inputs) for more information.
 ...
     - name: Run changed-files with dir_names
       id: changed-files-dir-names
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
       with:
         dir_names: "true"
 ...
@@ -1297,7 +1298,7 @@ See [inputs](#inputs) for more information.
 ...
     - name: Run changed-files with JSON output
       id: changed-files-json
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
       with:
         json: "true"
 ...
@@ -1314,13 +1315,13 @@ See [inputs](#inputs) for more information.
 ...
     - name: Get changed-files since 2022-08-19
       id: changed-files-since
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
       with:
         since: "2022-08-19"
 
     - name: Get changed-files until 2022-08-20
       id: changed-files-until
-      uses: tj-actions/changed-files@v46
+      uses: tj-actions/changed-files@24d32ffd492484c1d75e0c0b894501ddb9d30d62 # v47
       with:
         until: "2022-08-20"
 ...
@@ -1338,14 +1339,10 @@ See [inputs](#inputs) for more information.
 
 *   [qgis/QGIS: uses tj-actions/changed-files to automate spell checking](https://github.com/qgis/QGIS/blob/a5333497e90ac9de4ca70463d8e0b64c3f294d63/.github/workflows/code_layout.yml#L147)
 
-*   [coder/code-server: uses tj-actions/changed-files to automate detecting changes and run steps based on the outcome](https://github.com/coder/code-server/blob/c32a31d802f679846876b8ad9aacff6cf7b5361d/.github/workflows/build.yaml#L48)
-
 *   [tldr-pages/tldr: uses tj-actions/changed-files to automate detecting spelling errors](https://github.com/tldr-pages/tldr/blob/c1b714c55cb0048037b79a681a10d7f3ddb0164c/.github/workflows/codespell.yml#L18-L26)
 
 *   [nodejs/docker-node: uses tj-actions/changed-files to generate matrix jobs based on changes detected](https://github.com/nodejs/docker-node/blob/3c4fa6daf06a4786d202f2f610351837806a0380/.github/workflows/build-test.yml#L29)
 
-*   [refined-github: uses tj-actions/changed-files to automate test URL validation in added/edited files](https://github.com/refined-github/refined-github/blob/b754bfe58904da8a599d7876fdaaf18302785629/.github/workflows/features.yml#L35)
-
 *   [aws-doc-sdk-examples: uses tj-actions/changed-files to automate testing](https://github.com/awsdocs/aws-doc-sdk-examples/blob/2393723ef6b0cad9502f4852f5c72f7be58ca89d/.github/workflows/javascript.yml#L22)
 
 *   [nhost: uses tj-actions/changed-files to automate testing based on changes detected](https://github.com/nhost/nhost/blob/71a8ce444618a8ac4d660518172fba4883c4014b/.github/workflows/ci.yaml#L44-L48)
@@ -1417,8 +1414,11 @@ If you are reporting a bug, please include:
 Thanks goes to these wonderful people ([emoji key](https://allcontributors.org/docs/en/emoji-key)):
 
 <!-- ALL-CONTRIBUTORS-LIST:START - Do not remove or modify this section -->
+
 <!-- prettier-ignore-start -->
+
 <!-- markdownlint-disable -->
+
 <table>
   <tbody>
     <tr>
@@ -1459,13 +1459,29 @@ Thanks goes to these wonderful people ([emoji key](https://allcontributors.org/d
     </tr>
     <tr>
       <td align="center" valign="top" width="14.28%"><a href="https://undefined.moe/"><img src="https://avatars.githubusercontent.com/u/29992205?v=4?s=100" width="100px;" alt="undefined"/><br /><sub><b>undefined</b></sub></a><br /><a href="https://github.com/tj-actions/changed-files/commits?author=undefined-moe" title="Documentation">📖</a></td>
+      <td align="center" valign="top" width="14.28%"><a href="https://github.com/Jellyfrog"><img src="https://avatars.githubusercontent.com/u/759887?v=4?s=100" width="100px;" alt="Jellyfrog"/><br /><sub><b>Jellyfrog</b></sub></a><br /><a href="https://github.com/tj-actions/changed-files/commits?author=Jellyfrog" title="Code">💻</a> <a href="https://github.com/tj-actions/changed-files/commits?author=Jellyfrog" title="Documentation">📖</a></td>
     </tr>
   </tbody>
 </table>
 
 <!-- markdownlint-restore -->
+
 <!-- prettier-ignore-end -->
 
 <!-- ALL-CONTRIBUTORS-LIST:END -->
 
 This project follows the [all-contributors](https://github.com/all-contributors/all-contributors) specification. Contributions of any kind welcome!
+
+***
+
+## 💼 Automate Your Job Search Too
+
+You automate your CI/CD. Automate your job applications too.
+
+**[ApplySmart AI](https://applysmart.ai)** helps you:
+
+*   Generate tailored resumes & cover letters in seconds
+*   Extract job details from any posting automatically
+*   Track applications like you track deployments
+
+**Free tier available** → [applysmart.ai](https://applysmart.ai)

action.yml

@@ -227,6 +227,14 @@ inputs:
     description: "Exclude changes to submodules."
     required: false
     default: "false"
+  exclude_symlinks:
+    description: "Exclude symlinks from changed files."
+    required: false
+    default: "false"
+  skip_same_sha:
+    description: "Do not fail when base and head SHAs are identical."
+    required: false
+    default: "false"
   fetch_missing_history_max_retries:
     description: "Maximum number of retries to fetch missing history."
     required: false
@@ -250,6 +258,8 @@ outputs:
     description: "Returns only files that are Added (A)."
   added_files_count:
     description: "Returns the number of `added_files`"
+  any_added:
+    description: "Returns `true` when any of the filenames provided using the `files*` or `files_ignore*` inputs have been added."
   copied_files:
     description: "Returns only files that are Copied (C)."
   copied_files_count:
@@ -324,7 +334,7 @@ outputs:
     description: "Returns all changed YAML keys when the `files_yaml` input is used. i.e. key that contains any path that has either been added, copied, modified, and renamed (ACMR)"
 
 runs:
-  using: 'node20'
+  using: 'node24'
   main: 'dist/index.js'
 
 branding:

package.json

@@ -33,30 +33,30 @@
   },
   "homepage": "https://github.com/tj-actions/changed-files#readme",
   "dependencies": {
-    "@actions/core": "^1.10.0",
-    "@actions/exec": "^1.1.1",
+    "@actions/core": "^2.0.0",
+    "@actions/exec": "^2.0.0",
     "@actions/github": "^6.0.0",
-    "@octokit/rest": "^21.0.0",
+    "@octokit/rest": "^22.0.0",
     "@stdlib/utils-convert-path": "^0.2.1",
     "lodash": "^4.17.21",
     "micromatch": "^4.0.5",
     "yaml": "^2.3.1"
   },
   "devDependencies": {
-    "@types/jest": "^29.5.2",
+    "@types/jest": "^30.0.0",
     "@types/lodash": "^4.14.195",
     "@types/micromatch": "^4.0.2",
-    "@types/node": "^22.0.0",
-    "@types/uuid": "^10.0.0",
+    "@types/node": "^25.0.0",
+    "@types/uuid": "^11.0.0",
     "@typescript-eslint/eslint-plugin": "^7.0.0",
     "@typescript-eslint/parser": "^7.0.0",
     "@vercel/ncc": "^0.38.0",
     "eslint": "^8.43.0",
     "eslint-config-prettier": "^10.0.0",
     "eslint-plugin-github": "^5.0.0",
-    "eslint-plugin-jest": "^28.0.0",
+    "eslint-plugin-jest": "^29.0.1",
     "eslint-plugin-prettier": "^5.0.0-alpha.2",
-    "jest": "^29.5.0",
+    "jest": "^30.0.3",
     "prettier": "^3.0.0",
     "ts-jest": "^29.1.0",
     "typescript": "^5.1.3"

src/__tests__/__snapshots__/inputs.test.ts.snap

@@ -1,4 +1,4 @@
-// Jest Snapshot v1, https://goo.gl/fbAQLP
+// Jest Snapshot v1, https://jestjs.io/docs/snapshot-testing
 
 exports[`getInputs should correctly parse boolean inputs 1`] = `
 {
@@ -12,6 +12,7 @@ exports[`getInputs should correctly parse boolean inputs 1`] = `
   "dirNamesIncludeFilesSeparator": "",
   "escapeJson": false,
   "excludeSubmodules": "false",
+  "excludeSymlinks": "false",
   "failOnInitialDiffError": "false",
   "failOnSubmoduleDiffError": "false",
   "fetchAdditionalSubmoduleHistory": "false",
@@ -53,6 +54,7 @@ exports[`getInputs should correctly parse boolean inputs 1`] = `
   "since": "",
   "sinceLastRemoteCommit": "false",
   "skipInitialFetch": "true",
+  "skipSameSha": "false",
   "tagsIgnorePattern": "",
   "tagsPattern": "*",
   "token": "",
@@ -76,6 +78,7 @@ exports[`getInputs should correctly parse numeric inputs 1`] = `
   "dirNamesMaxDepth": 2,
   "escapeJson": false,
   "excludeSubmodules": false,
+  "excludeSymlinks": false,
   "failOnInitialDiffError": false,
   "failOnSubmoduleDiffError": false,
   "fetchAdditionalSubmoduleHistory": false,
@@ -115,6 +118,7 @@ exports[`getInputs should correctly parse numeric inputs 1`] = `
   "since": "",
   "sinceLastRemoteCommit": false,
   "skipInitialFetch": false,
+  "skipSameSha": false,
   "tagsIgnorePattern": "",
   "tagsPattern": "",
   "token": "",
@@ -137,6 +141,7 @@ exports[`getInputs should correctly parse string inputs 1`] = `
   "dirNamesIncludeFilesSeparator": "",
   "escapeJson": false,
   "excludeSubmodules": false,
+  "excludeSymlinks": false,
   "failOnInitialDiffError": false,
   "failOnSubmoduleDiffError": false,
   "fetchAdditionalSubmoduleHistory": false,
@@ -175,6 +180,7 @@ exports[`getInputs should correctly parse string inputs 1`] = `
   "since": "",
   "sinceLastRemoteCommit": false,
   "skipInitialFetch": false,
+  "skipSameSha": false,
   "tagsIgnorePattern": "",
   "tagsPattern": "",
   "token": "token",
@@ -198,6 +204,7 @@ exports[`getInputs should handle invalid numeric inputs correctly 1`] = `
   "dirNamesMaxDepth": 2,
   "escapeJson": false,
   "excludeSubmodules": false,
+  "excludeSymlinks": false,
   "failOnInitialDiffError": false,
   "failOnSubmoduleDiffError": false,
   "fetchAdditionalSubmoduleHistory": false,
@@ -237,6 +244,7 @@ exports[`getInputs should handle invalid numeric inputs correctly 1`] = `
   "since": "",
   "sinceLastRemoteCommit": false,
   "skipInitialFetch": false,
+  "skipSameSha": false,
   "tagsIgnorePattern": "",
   "tagsPattern": "",
   "token": "",
@@ -260,6 +268,7 @@ exports[`getInputs should handle negative numeric inputs correctly 1`] = `
   "dirNamesMaxDepth": -2,
   "escapeJson": false,
   "excludeSubmodules": false,
+  "excludeSymlinks": false,
   "failOnInitialDiffError": false,
   "failOnSubmoduleDiffError": false,
   "fetchAdditionalSubmoduleHistory": false,
@@ -299,6 +308,7 @@ exports[`getInputs should handle negative numeric inputs correctly 1`] = `
   "since": "",
   "sinceLastRemoteCommit": false,
   "skipInitialFetch": false,
+  "skipSameSha": false,
   "tagsIgnorePattern": "",
   "tagsPattern": "",
   "token": "",
@@ -321,6 +331,7 @@ exports[`getInputs should return default values when no inputs are provided 1`]
   "dirNamesIncludeFilesSeparator": "",
   "escapeJson": false,
   "excludeSubmodules": false,
+  "excludeSymlinks": false,
   "failOnInitialDiffError": false,
   "failOnSubmoduleDiffError": false,
   "fetchAdditionalSubmoduleHistory": false,
@@ -362,6 +373,7 @@ exports[`getInputs should return default values when no inputs are provided 1`]
   "since": "",
   "sinceLastRemoteCommit": false,
   "skipInitialFetch": false,
+  "skipSameSha": false,
   "tagsIgnorePattern": "",
   "tagsPattern": "*",
   "token": "",

src/__tests__/utils.test.ts

@@ -639,6 +639,8 @@ describe('utils test', () => {
         negationPatternsFirst: false,
         useRestApi: false,
         excludeSubmodules: false,
+        excludeSymlinks: false,
+        skipSameSha: false,
         fetchMissingHistoryMaxRetries: 20,
         usePosixPathSeparator: false,
         tagsPattern: '*',

src/changedFiles.ts

@@ -16,6 +16,8 @@ import {
   getFilteredChangedFiles,
   gitRenamedFiles,
   gitSubmoduleDiffSHA,
+  isSymlinkInGitTree,
+  isSymlinkOnDisk,
   isWindows,
   jsonOutput,
   setArrayOutput
@@ -89,21 +91,17 @@ export const processChangedFiles = async ({
       core.endGroup()
     }
 
-    if (modifiedKeys.length > 0) {
-      await setArrayOutput({
-        key: 'modified_keys',
-        inputs,
-        value: modifiedKeys
-      })
-    }
+    await setArrayOutput({
+      key: 'modified_keys',
+      inputs,
+      value: modifiedKeys
+    })
 
-    if (changedKeys.length > 0) {
-      await setArrayOutput({
-        key: 'changed_keys',
-        inputs,
-        value: changedKeys
-      })
-    }
+    await setArrayOutput({
+      key: 'changed_keys',
+      inputs,
+      value: changedKeys
+    })
   }
 
   if (filePatterns.length === 0 && Object.keys(yamlFilePatterns).length === 0) {
@@ -224,7 +222,8 @@ export const getAllDiffFiles = async ({
   outputRenamedFilesAsDeletedAndAdded,
   fetchAdditionalSubmoduleHistory,
   failOnInitialDiffError,
-  failOnSubmoduleDiffError
+  failOnSubmoduleDiffError,
+  submoduleShas
 }: {
   workingDirectory: string
   diffSubmodule: boolean
@@ -234,6 +233,7 @@ export const getAllDiffFiles = async ({
   fetchAdditionalSubmoduleHistory: boolean
   failOnInitialDiffError: boolean
   failOnSubmoduleDiffError: boolean
+  submoduleShas?: Record<string, {previousSha?: string; currentSha?: string}>
 }): Promise<ChangedFiles> => {
   const files = await getAllChangedFiles({
     cwd: workingDirectory,
@@ -260,6 +260,9 @@ export const getAllDiffFiles = async ({
       )
 
       if (submoduleShaResult.currentSha && submoduleShaResult.previousSha) {
+        if (submoduleShas) {
+          submoduleShas[submodulePath] = submoduleShaResult
+        }
         let diff = '...'
 
         if (
@@ -304,6 +307,139 @@ export const getAllDiffFiles = async ({
   return files
 }
 
+export const filterSymlinksFromChangedFiles = async ({
+  changedFiles,
+  workingDirectory,
+  diffResult,
+  submodulePaths,
+  submoduleShas
+}: {
+  changedFiles: ChangedFiles
+  workingDirectory: string
+  diffResult: DiffResult
+  submodulePaths: string[]
+  submoduleShas?: Record<string, {previousSha?: string; currentSha?: string}>
+}): Promise<ChangedFiles> => {
+  const filtered: ChangedFiles = {
+    [ChangeTypeEnum.Added]: [],
+    [ChangeTypeEnum.Copied]: [],
+    [ChangeTypeEnum.Deleted]: [],
+    [ChangeTypeEnum.Modified]: [],
+    [ChangeTypeEnum.Renamed]: [],
+    [ChangeTypeEnum.TypeChanged]: [],
+    [ChangeTypeEnum.Unmerged]: [],
+    [ChangeTypeEnum.Unknown]: []
+  }
+
+  const cache = new Map<string, boolean>()
+  const diskCache = new Map<string, boolean>()
+
+  const getSubmoduleContext = (
+    filePath: string
+  ): {
+    cwd: string
+    relativePath: string
+    currentSha: string
+    previousSha: string
+    isSubmoduleRoot: boolean
+  } => {
+    const submodulePath = submodulePaths.find(p =>
+      filePath.startsWith(`${p}${path.sep}`)
+    )
+    if (!submodulePath) {
+      return {
+        cwd: workingDirectory,
+        relativePath: filePath,
+        currentSha: diffResult.currentSha,
+        previousSha: diffResult.previousSha,
+        isSubmoduleRoot: false
+      }
+    }
+
+    if (filePath === submodulePath) {
+      return {
+        cwd: workingDirectory,
+        relativePath: filePath,
+        currentSha: diffResult.currentSha,
+        previousSha: diffResult.previousSha,
+        isSubmoduleRoot: true
+      }
+    }
+
+    const submoduleWorkingDirectory = path.join(workingDirectory, submodulePath)
+    const relativePath = filePath.substring(submodulePath.length + 1)
+    const submoduleSha = submoduleShas?.[submodulePath]
+
+    return {
+      cwd: submoduleWorkingDirectory,
+      relativePath,
+      currentSha: submoduleSha?.currentSha || diffResult.currentSha,
+      previousSha: submoduleSha?.previousSha || diffResult.previousSha,
+      isSubmoduleRoot: false
+    }
+  }
+
+  const isSymlinkCached = async ({
+    cwd,
+    filePath,
+    sha,
+    preferDisk
+  }: {
+    cwd: string
+    filePath: string
+    sha: string
+    preferDisk: boolean
+  }): Promise<boolean> => {
+    if (preferDisk) {
+      const diskKey = `${cwd}|disk|${filePath}`
+      const cachedDisk = diskCache.get(diskKey)
+      if (cachedDisk !== undefined) {
+        return cachedDisk
+      }
+      const diskResult = await isSymlinkOnDisk({cwd, filePath})
+      diskCache.set(diskKey, diskResult)
+      if (diskResult) {
+        return true
+      }
+    }
+
+    const treeKey = `${cwd}|${sha}|${filePath}`
+    const cachedTree = cache.get(treeKey)
+    if (cachedTree !== undefined) {
+      return cachedTree
+    }
+    const treeResult = await isSymlinkInGitTree({cwd, sha, filePath})
+    cache.set(treeKey, treeResult)
+    return treeResult
+  }
+
+  for (const changeType of Object.keys(changedFiles) as ChangeTypeEnum[]) {
+    const files = changedFiles[changeType] || []
+    for (const filePath of files) {
+      const context = getSubmoduleContext(filePath)
+      if (context.isSubmoduleRoot) {
+        filtered[changeType].push(filePath)
+        continue
+      }
+
+      const isDeleted = changeType === ChangeTypeEnum.Deleted
+      const sha = isDeleted ? context.previousSha : context.currentSha
+      const isSymlink = await isSymlinkCached({
+        cwd: context.cwd,
+        filePath: context.relativePath,
+        sha,
+        preferDisk: !isDeleted
+      })
+
+      if (!isSymlink) {
+        filtered[changeType].push(filePath)
+      }
+    }
+  }
+
+  return filtered
+}
+
 function* getFilePaths({
   inputs,
   filePaths,

src/changedFilesOutput.ts

@@ -52,6 +52,13 @@ export const setOutputsAndGetModifiedAndChangedFilesStatus = async ({
     writeOutputFiles: inputs.writeOutputFiles,
     outputDir: inputs.outputDir
   })
+  await setOutput({
+    key: getOutputKey('any_added', outputPrefix),
+    value: addedFiles.paths.length > 0,
+    writeOutputFiles: inputs.writeOutputFiles,
+    outputDir: inputs.outputDir,
+    json: inputs.json
+  })
 
   const copiedFiles = await getChangeTypeFiles({
     inputs,

src/commitSha.ts

@@ -84,6 +84,7 @@ export interface DiffResult {
   targetBranch: string
   diff: string
   initialCommit?: boolean
+  sameSha?: boolean
 }
 
 interface SHAForNonPullRequestEvent {
@@ -198,6 +199,19 @@ export const getSHAForNonPullRequestEvent = async ({
 
   if (inputs.baseSha && inputs.sha && currentBranch && targetBranch) {
     if (previousSha === currentSha) {
+      if (inputs.skipSameSha) {
+        core.info(
+          `Skipping diff because previous sha ${previousSha} is equivalent to the current sha ${currentSha}.`
+        )
+        return {
+          previousSha,
+          currentSha,
+          currentBranch,
+          targetBranch,
+          diff,
+          sameSha: true
+        }
+      }
       core.error(
         `Similar commit hashes detected: previous sha: ${previousSha} is equivalent to the current sha: ${currentSha}.`
       )
@@ -305,6 +319,19 @@ export const getSHAForNonPullRequestEvent = async ({
   core.debug(`Current branch: ${currentBranch}`)
 
   if (!initialCommit && previousSha === currentSha) {
+    if (inputs.skipSameSha) {
+      core.info(
+        `Skipping diff because previous sha ${previousSha} is equivalent to the current sha ${currentSha}.`
+      )
+      return {
+        previousSha,
+        currentSha,
+        currentBranch,
+        targetBranch,
+        diff,
+        sameSha: true
+      }
+    }
     core.error(
       `Similar commit hashes detected: previous sha: ${previousSha} is equivalent to the current sha: ${currentSha}.`
     )
@@ -430,6 +457,19 @@ export const getSHAForPullRequestEvent = async ({
 
   if (inputs.baseSha && inputs.sha && currentBranch && targetBranch) {
     if (previousSha === currentSha) {
+      if (inputs.skipSameSha) {
+        core.info(
+          `Skipping diff because previous sha ${previousSha} is equivalent to the current sha ${currentSha}.`
+        )
+        return {
+          previousSha,
+          currentSha,
+          currentBranch,
+          targetBranch,
+          diff,
+          sameSha: true
+        }
+      }
       core.error(
         `Similar commit hashes detected: previous sha: ${previousSha} is equivalent to the current sha: ${currentSha}.`
       )
@@ -608,6 +648,19 @@ export const getSHAForPullRequestEvent = async ({
   }
 
   if (previousSha === currentSha) {
+    if (inputs.skipSameSha) {
+      core.info(
+        `Skipping diff because previous sha ${previousSha} is equivalent to the current sha ${currentSha}.`
+      )
+      return {
+        previousSha,
+        currentSha,
+        currentBranch,
+        targetBranch,
+        diff,
+        sameSha: true
+      }
+    }
     core.error(
       `Similar commit hashes detected: previous sha: ${previousSha} is equivalent to the current sha: ${currentSha}.`
     )

src/constant.ts

@@ -22,6 +22,8 @@ export const DEFAULT_VALUES_OF_UNSUPPORTED_API_INPUTS: Partial<Inputs> = {
   fetchAdditionalSubmoduleHistory: false,
   dirNamesDeletedFilesIncludeOnlyDeletedDirs: false,
   excludeSubmodules: false,
+  excludeSymlinks: false,
+  skipSameSha: false,
   fetchMissingHistoryMaxRetries: 20,
   usePosixPathSeparator: false,
   tagsPattern: '*',

src/inputs.ts

@@ -55,6 +55,8 @@ export type Inputs = {
   negationPatternsFirst: boolean
   useRestApi: boolean
   excludeSubmodules: boolean
+  excludeSymlinks: boolean
+  skipSameSha: boolean
   fetchMissingHistoryMaxRetries?: number
   usePosixPathSeparator: boolean
   tagsPattern: string
@@ -249,6 +251,14 @@ export const getInputs = (): Inputs => {
     required: false
   })
 
+  const excludeSymlinks = core.getBooleanInput('exclude_symlinks', {
+    required: false
+  })
+
+  const skipSameSha = core.getBooleanInput('skip_same_sha', {
+    required: false
+  })
+
   const fetchMissingHistoryMaxRetries = core.getInput(
     'fetch_missing_history_max_retries',
     {required: false}
@@ -310,6 +320,8 @@ export const getInputs = (): Inputs => {
     fetchAdditionalSubmoduleHistory,
     dirNamesDeletedFilesIncludeOnlyDeletedDirs,
     excludeSubmodules,
+    excludeSymlinks,
+    skipSameSha,
     usePosixPathSeparator,
     tagsPattern,
     tagsIgnorePattern,

src/main.ts

@@ -5,8 +5,10 @@ import {
   processChangedFiles,
   ChangeTypeEnum,
   getAllDiffFiles,
+  filterSymlinksFromChangedFiles,
   getChangedFilesFromGithubAPI,
-  getRenamedFiles
+  getRenamedFiles,
+  ChangedFiles
 } from './changedFiles'
 import {
   DiffResult,
@@ -127,11 +129,57 @@ const getChangedFilesFromLocalGitHistory = async ({
     return
   }
 
+  if (diffResult.sameSha) {
+    core.info('Base and head SHAs are identical; no changed files to report.')
+    const emptyChangedFiles: ChangedFiles = {
+      [ChangeTypeEnum.Added]: [],
+      [ChangeTypeEnum.Copied]: [],
+      [ChangeTypeEnum.Deleted]: [],
+      [ChangeTypeEnum.Modified]: [],
+      [ChangeTypeEnum.Renamed]: [],
+      [ChangeTypeEnum.TypeChanged]: [],
+      [ChangeTypeEnum.Unmerged]: [],
+      [ChangeTypeEnum.Unknown]: []
+    }
+    await processChangedFiles({
+      filePatterns,
+      allDiffFiles: emptyChangedFiles,
+      inputs,
+      yamlFilePatterns,
+      workingDirectory
+    })
+
+    if (inputs.includeAllOldNewRenamedFiles) {
+      await setOutput({
+        key: 'all_old_new_renamed_files',
+        value: inputs.json ? [] : '',
+        writeOutputFiles: inputs.writeOutputFiles,
+        outputDir: inputs.outputDir,
+        json: inputs.json,
+        safeOutput: inputs.safeOutput
+      })
+      await setOutput({
+        key: 'all_old_new_renamed_files_count',
+        value: '0',
+        writeOutputFiles: inputs.writeOutputFiles,
+        outputDir: inputs.outputDir,
+        json: inputs.json
+      })
+    }
+    core.info('All Done!')
+    core.endGroup()
+    return
+  }
+
   core.info(
     `Retrieving changes between ${diffResult.previousSha} (${diffResult.targetBranch}) → ${diffResult.currentSha} (${diffResult.currentBranch})`
   )
 
-  const allDiffFiles = await getAllDiffFiles({
+  const submoduleShas: Record<
+    string,
+    {previousSha?: string; currentSha?: string}
+  > = {}
+  let allDiffFiles = await getAllDiffFiles({
     workingDirectory,
     diffSubmodule,
     diffResult,
@@ -139,8 +187,20 @@ const getChangedFilesFromLocalGitHistory = async ({
     outputRenamedFilesAsDeletedAndAdded,
     fetchAdditionalSubmoduleHistory: inputs.fetchAdditionalSubmoduleHistory,
     failOnInitialDiffError: inputs.failOnInitialDiffError,
-    failOnSubmoduleDiffError: inputs.failOnSubmoduleDiffError
+    failOnSubmoduleDiffError: inputs.failOnSubmoduleDiffError,
+    submoduleShas
   })
+
+  if (inputs.excludeSymlinks) {
+    core.info('Excluding symlinks from the diff')
+    allDiffFiles = await filterSymlinksFromChangedFiles({
+      changedFiles: allDiffFiles,
+      workingDirectory,
+      diffResult,
+      submodulePaths,
+      submoduleShas
+    })
+  }
   core.debug(`All diff files: ${JSON.stringify(allDiffFiles)}`)
   core.info('All Done!')
   core.endGroup()

src/utils.ts

@@ -152,6 +152,69 @@ export const exists = async (filePath: string): Promise<boolean> => {
   }
 }
 
+/**
+ * Checks if a file is a symlink on disk
+ * @param cwd - working directory
+ * @param filePath - path to check
+ * @returns file is a symlink
+ */
+export const isSymlinkOnDisk = async ({
+  cwd,
+  filePath
+}: {
+  cwd: string
+  filePath: string
+}): Promise<boolean> => {
+  try {
+    const stat = await fs.lstat(path.join(cwd, filePath))
+    return stat.isSymbolicLink()
+  } catch {
+    return false
+  }
+}
+
+/**
+ * Checks if a file is a symlink in a git tree
+ * @param cwd - working directory
+ * @param sha - commit sha
+ * @param filePath - path to check
+ * @returns file is a symlink
+ */
+export const isSymlinkInGitTree = async ({
+  cwd,
+  sha,
+  filePath
+}: {
+  cwd: string
+  sha: string
+  filePath: string
+}): Promise<boolean> => {
+  if (!sha) {
+    return false
+  }
+  const {stdout, exitCode} = await exec.getExecOutput(
+    'git',
+    ['ls-tree', '-r', sha, '--', filePath],
+    {
+      cwd,
+      ignoreReturnCode: true,
+      silent: !core.isDebug()
+    }
+  )
+
+  if (exitCode !== 0) {
+    return false
+  }
+
+  const line = stdout.split('\n').find(Boolean)
+  if (!line) {
+    return false
+  }
+
+  const [mode] = line.split(/\s+/)
+  return mode === '120000'
+}
+
 /**
  * Generates lines of a file as an async iterable iterator
  * @param filePath - path of file to read
@@ -819,14 +882,49 @@ export const cleanShaInput = async ({
 
   if (exitCode !== 0) {
     const octokit = github.getOctokit(token)
-    // If it's not a valid commit sha, assume it's a branch name and get the HEAD sha
-    const {data: refData} = await octokit.rest.git.getRef({
-      owner: github.context.repo.owner,
-      repo: github.context.repo.repo,
-      ref: `heads/${sha}`
+    const owner = github.context.repo.owner
+    const repo = github.context.repo.repo
+    const isNotFoundError = (error: unknown): boolean =>
+      typeof error === 'object' &&
+      error !== null &&
+      'status' in error &&
+      (error as {status?: number}).status === 404
+    // If it's not a valid commit sha, assume it's a ref name first.
+    try {
+      const {data: refData} = await octokit.rest.git.getRef({
+        owner,
+        repo,
+        ref: `heads/${sha}`
+      })
+
+      return refData.object.sha
+    } catch (error) {
+      if (!isNotFoundError(error)) {
+        throw error
+      }
+    }
+
+    try {
+      const {data: refData} = await octokit.rest.git.getRef({
+        owner,
+        repo,
+        ref: `tags/${sha}`
+      })
+
+      return refData.object.sha
+    } catch (error) {
+      if (!isNotFoundError(error)) {
+        throw error
+      }
+    }
+
+    const {data: commitData} = await octokit.rest.git.getCommit({
+      owner,
+      repo,
+      commit_sha: sha
     })
 
-    return refData.object.sha
+    return commitData.sha
   }
 
   return stdout.trim()

test/symlink-target.txt

@@ -0,0 +1 @@
+Symlink target fixture.

test/symlink-to-target

@@ -0,0 +1 @@
+symlink-target.txt

test/test.txt

@@ -1 +1 @@
-This is a test file...
+This is a test file