Alan Plum
Alan Plum
+1 What about [startssl](https://startssl.com)?
Not really. GitHub isn't the only place README.md content appears. NPM shows it and (I think) PyPI often shows it, too.
It's not a symlink. I added the file to my git template and it's a regular file in `.git/hooks/`. Even `.jshintrc` in the gitroot is ignored, though.
I think an easy yet naive way to address this would be to filter by label so you manually have to "greenlight" the endorsement. However that doesn't prevent issue authors...
Oh, also keep in mind that it's possible to inject images in markdown. So removing HTML is not enough: ```md  ``` 
I'm not sure what changes to the flow signature are necessary to adjust the types for this.
It's a bit silly that the latest version of an official action published by GitHub generates warnings when actually using it. Can this be fast tracked?
That's actually worse. What's the point of having GitHub publish actions if they don't even maintain them?
/cc @Uzlopak FYI, since you suggested this in #214.
FWIW my main use case for encryption would be storing internals like session IDs. Signing them works fine but there's really no reason for users to see the value. Signing...