[Enhancement] Remove tj-actions/changed-files from the workflows #5400

peterzhuamazon · 2025-03-16T04:41:38Z

~~I realized that in our repo has set this to a specific commit, so no issues for us now.~~
~~#5129~~

Based on the original report very likely we are also affected: Most versions of tj-actions/changed-files are compromised.

However, we do need to think about moving it out.
Thanks.

The text was updated successfully, but these errors were encountered:

peterzhuamazon · 2025-03-16T05:00:53Z

Seem like it is just changing tags to point to this commit tj-actions/changed-files@0e58ed8.

And since we already lock to a commit a while ago I think we are fine for now.

Thanks.

peterzhuamazon · 2025-03-16T05:01:55Z

gaiksaya · 2025-03-17T20:10:35Z

@Divyaasm Can you please take care of upgrading to recent/fixed version accordingly?
Thanks!

Divyaasm · 2025-03-17T20:17:16Z

@Divyaasm Can you please take care of upgrading to recent/fixed version accordingly? Thanks!

Sure @gaiksaya , Acknowledged!

gaiksaya · 2025-03-17T20:19:10Z

Thank you! Assigning it to you.

github-project-automation bot added this to Engineering Effectiveness Board Mar 16, 2025

github-project-automation bot moved this to 🆕 New in Engineering Effectiveness Board Mar 16, 2025

peterzhuamazon added the enhancement New Enhancement label Mar 16, 2025

github-actions bot added the untriaged Issues that have not yet been triaged label Mar 16, 2025

gaiksaya removed the untriaged Issues that have not yet been triaged label Mar 17, 2025

gaiksaya assigned Divyaasm Mar 17, 2025

Divyaasm mentioned this issue Mar 17, 2025

Change tj-actions/changed-files usage from sha to latest version #5402

Merged

Divyaasm closed this as completed in #5402 Mar 17, 2025

github-project-automation bot moved this from 🆕 New to ✅ Done in Engineering Effectiveness Board Mar 17, 2025

Provide feedback