tl;dr: No, we are waiting for https://github.blog/news-insights/product-news/whats-coming-to-our-github-actions-2026-security-roadmap/
Given that we do not create releases using actions, sign artifacts in actions or upload to public nuget.org (no secrets), this is not considered a security problem.
tl;dr: No, we are waiting for https://github.blog/news-insights/product-news/whats-coming-to-our-github-actions-2026-security-roadmap/
Given that we do not create releases using actions, sign artifacts in actions or upload to public nuget.org (no secrets), this is not considered a security problem.