GitHub debuts pedigree check for npm packages via Actions
GitHub debuts pedigree check for npm packages via Actions
20 April 2023
Developers using GitHub Actions to build software packages for NPM can now add a command flag that will publish details about the code's origin. This feature is intended to further enhance the security of the open-source software supply chain.