Cedric

@jeromelaban, thanks for pointing that out :see_no_evil: I've rewritten the commit messages!

@jeromelaban Yes I see, thanks for the feedback, I've reverted those changes.

/check-cla

The info page is: https://ceddy4395.github.io/research/gha-smells.html

> This is interesting, but why would you not want to run regular jobs/actions in a fork? @ceddy4395 @detunjiSamuel The idea is not to eliminate all workflows from forks but...

@microsoft-github-policy-service agree

@RogerBarreto [Here is a scientific paper](https://www.usenix.org/conference/usenixsecurity22/presentation/koishybayev) and [a blog post](https://blog.rafaelgss.dev/why-you-should-pin-actions-by-commit-hash) about potential security risks related to GitHub Actions