From 8c4b410a5b6e815eb30274108d1199fe89b9aa64 Mon Sep 17 00:00:00 2001
From: Sneha Khaitan <sneh.khaitan@gmail.com>
Date: Fri, 15 May 2026 10:07:42 +0100
Subject: [PATCH] security(ci): pin third-party actions to commit SHAs

---
 .github/workflows/security-ioc-scan.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/security-ioc-scan.yml b/.github/workflows/security-ioc-scan.yml
index dd9c748..2e2b1d0 100644
--- a/.github/workflows/security-ioc-scan.yml
+++ b/.github/workflows/security-ioc-scan.yml
@@ -26,7 +26,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout (full history for diff)
-        uses: actions/checkout@v4
+        uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
         with:
           fetch-depth: 0