From a007d5b82ac51b46db359635c21394de6915db98 Mon Sep 17 00:00:00 2001
From: Jade <jade@ellis.link>
Date: Thu, 26 Mar 2026 03:01:24 +0000
Subject: [PATCH] deps: Pin actions

In the wake of all the compromises so far this week, this seems like a good idea.
---
 renovate.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/renovate.json b/renovate.json
index bdc7aef30..e5d530530 100644
--- a/renovate.json
+++ b/renovate.json
@@ -1,6 +1,6 @@
 {
     "$schema": "https://docs.renovatebot.com/renovate-schema.json",
-    "extends": ["config:recommended", "replacements:all", ":semanticCommitTypeAll(chore)"],
+    "extends": ["config:recommended", "replacements:all", ":semanticCommitTypeAll(chore)", "pinGitHubActionDigests"],
     "dependencyDashboard": true,
     "osvVulnerabilityAlerts": true,
     "lockFileMaintenance": {