<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Automation on</title><link>https://edu.chainguard.dev/tags/automation/</link><description>Recent content in Automation on</description><generator>Hugo -- gohugo.io</generator><language>en</language><copyright>Copyright (c) 2023 Chainguard</copyright><lastBuildDate>Wed, 08 Jul 2026 00:00:00 +0000</lastBuildDate><atom:link href="https://edu.chainguard.dev/tags/automation/index.xml" rel="self" type="application/rss+xml"/><item><title>Chainguard Guardener Actions Security</title><link>https://edu.chainguard.dev/chainguard/guardener/actions-security/</link><pubDate>Wed, 08 Jul 2026 00:00:00 +0000</pubDate><guid>https://edu.chainguard.dev/chainguard/guardener/actions-security/</guid><description>&lt;p&gt;The Actions Security feature recommends and migrates your GitHub Actions to Chainguard&amp;rsquo;s hardened, SHA-pinned equivalents. Pinning actions to a specific commit SHA — rather than a mutable tag or branch — protects your workflows from supply chain attacks in which an upstream tag is moved to point at malicious code.&lt;/p&gt;
&lt;p&gt;Actions Security operates in two independent modes:&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;&lt;strong&gt;Pull request recommendations&lt;/strong&gt; — non-blocking review comments that suggest hardened action alternatives, with one-click suggestion blocks.&lt;/li&gt;
&lt;li&gt;&lt;strong&gt;Automated migration pull requests&lt;/strong&gt; — a periodically maintained pull request that updates workflows across your repository.&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;You can enable either mode on its own or both together.&lt;/p&gt;</description></item></channel></rss>