From e6e5995374fcd6317d689df0063e934e324c3659 Mon Sep 17 00:00:00 2001
From: Thanh Ha <thanh.ha@linuxfoundation.org>
Date: Fri, 14 Mar 2025 22:56:52 -0400
Subject: [PATCH] Tags in tj-actions/changed-files are compromised

The tags in tj-actions/changed-files action are compromised and are
leaking GitHub secrets in repos using the compromised repo. This pins
the action to a known good hash.

https://www.stepsecurity.io/blog/harden-runner-detection-tj-actions-changed-files-action-is-compromised

Signed-off-by: Thanh Ha <thanh.ha@linuxfoundation.org>
---
 .github/workflows/link_checkPR.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/link_checkPR.yml b/.github/workflows/link_checkPR.yml
index 1fde2371590..134542f085a 100644
--- a/.github/workflows/link_checkPR.yml
+++ b/.github/workflows/link_checkPR.yml
@@ -18,7 +18,7 @@ jobs:
 
       - name: Get Changed Files
         id: changed-files
-        uses: tj-actions/changed-files@v41
+        uses: tj-actions/changed-files@d6e91a2266cdb9d62096cebf1e8546899c6aa18f # v45.0.6
 
       - name: Check for Skip Label
         id: skip-label