From 4e44999207ac71a112f06c11fa03591cb08dff77 Mon Sep 17 00:00:00 2001
From: kasey <489222+kasey@users.noreply.github.com>
Date: Sat, 15 Mar 2025 14:56:25 -0500
Subject: [PATCH] OCL forked changed-files pin; pin others (#15056)

* OCL forked changed-files pin; pin others

* changelog :)

---------

Co-authored-by: Kasey Kirkham <kasey@users.noreply.github.com>
---
 .github/workflows/changelog.yml            | 4 ++--
 changelog/kasey_pinned-changelog-action.md | 2 ++
 2 files changed, 4 insertions(+), 2 deletions(-)
 create mode 100644 changelog/kasey_pinned-changelog-action.md

diff --git a/.github/workflows/changelog.yml b/.github/workflows/changelog.yml
index 7bd10135ab..a38fe1da09 100644
--- a/.github/workflows/changelog.yml
+++ b/.github/workflows/changelog.yml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout source code
-        uses: actions/checkout@v3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
 
       - name: Download unclog binary
         uses: dsaltares/fetch-gh-release-asset@aa2ab1243d6e0d5b405b973c89fa4d06a2d0fff7 # 1.1.2
@@ -23,7 +23,7 @@ jobs:
 
       - name: Get new changelog files
         id: new-changelog-files
-        uses: tj-actions/changed-files@v45
+        uses: OffchainLabs/gh-action-changed-files@9200e69727eb73eb060652b19946b8a2fdfb654b # v4.0.8
         with:
           files: |
             changelog/**.md
diff --git a/changelog/kasey_pinned-changelog-action.md b/changelog/kasey_pinned-changelog-action.md
new file mode 100644
index 0000000000..72b1783444
--- /dev/null
+++ b/changelog/kasey_pinned-changelog-action.md
@@ -0,0 +1,2 @@
+### Ignored
+- prysmaticlabs/prysm repo security fix: use forked version of tj-actions/changed-files and version pin other actions to commit sha in the changelog workflow.