GitHub Actions: Security Hardening Against Pull-Request-Target Abuse Starting in Version 723. June 2026Claude Code, Cybersecurityactions/checkout v7 fails workflows that use pull_request_target or workflow_run with unverified fork code — a step toward “Security by Default” philosophy. Share on: