Garnet Blog

Insights, tutorials, and best practices for pipeline security

tj-actions/changed-files: GitHub Actions Supply Chain Compromise

Analysis of the March 2025 tj-actions/changed-files GitHub Action compromise and how Garnet's runtime monitoring would have detected it instantly