ruff is using a compromised tj-actions/changed-files GitHub actio

[eslerm]

Filing a public issue instead of reporting this as a private vulnerability, since this malware is a publicly known and an urgent issue.

ruff uses a compromised version of tj-actions/changed-files. The compromised action appears to leak secrets the runner has in memory.

The action is included in: https://github.com/astral-sh/ruff/blob/main/.github/workflows/ci.yaml

Output of an affected run on ruff: https://github.com/astral-sh/ruff/actions/runs/13868731237/job/38812473949?pr=16641#step:3:113

Please review.

Learn about the compromise on StepSecurity of Semgrep.

[ntBre]

Thank you! We were notified about this yesterday and currently have all non-Astral actions disabled (effectively disabling CI) while we work on a longer-term fix. We also rotated all of our secrets that could have been affected.

[ntBre]

This should be resolved by:

1. [ci]: Remove changed files actions #16788, which removed the compromised action
2. Instruct Renovate to pin GitHub Actions based on SHA #16789, which should prevent similar tag-altering attacks in the future

We also replaced the action's functionality with a git command (#16796) like in uv (astral-sh/uv#12188) and python-build-standalone (astral-sh/python-build-standalone#559).

Thank you again for the report!