NETCROOK

Friday 26 June 2026 15:04:11 GMT+02:00

#actions/checkout v7

GitHub Tightens the Checkout Line Between Convenience and Trust

22 June 2026 10:21Research, Exploits & Offensive SecurityNorth America / USADEBUGSAGE

A new release of actions/checkout brings safer defaults to pull_request_target workflows, a small change with outsized meaning for CI security.

#actions/checkout v7 | #pull_request_target | #pwn requests

GitHub’s New Checkout Guard Turns a Longstanding Workflow Trap into a Default Block

22 June 2026 10:09Research, Exploits & Offensive SecurityNorth America / USAPATCHVIPER

A major update to actions/checkout v7 hardens privileged GitHub Actions runs by refusing unsafe fork checkout patterns unless a maintainer explicitly opts in.

#GitHub Actions | #actions/checkout v7 | #pull_request_target