https://josh-ops.com/Blogging about Azure DevOps and GitHub practices, tips, and my continuous improvement DevOps journey. 2026-04-17T14:32:54-05:00 Josh Johanning https://josh-ops.com/ Jekyll © 2026 Josh Johanning /assets/img/favicons/favicon.ico /assets/img/favicons/favicon-96x96.png 2026-04-03T20:00:00-05:00 2026-04-03T20:00:00-05:00 https://josh-ops.com/posts/enforcing-immutable-actions-required-workflows/ Josh Johanning

Using a required workflow to enforce that all GitHub Actions in your pull requests reference immutable releases, adding a supply chain security gate at the organization or enterprise level

2026-03-24T22:00:00-05:00 2026-03-30T16:30:36-05:00 https://josh-ops.com/posts/maintaining-oss-github-actions/ Josh Johanning

A walkthrough of the tools, workflows, and practices I use to maintain a growing collection of open source JavaScript GitHub Actions

2026-03-19T20:00:00-05:00 2026-03-19T20:00:00-05:00 https://josh-ops.com/posts/github-actions-oidc-custom-properties/ Josh Johanning

How to include repository custom properties in GitHub Actions OIDC tokens to enable attribute-based access control to cloud environments

2026-03-19T20:00:00-05:00 2026-03-19T20:00:00-05:00 https://josh-ops.com/posts/azure-federated-credential-claims-matching-expressions/ Josh Johanning

Using the new claims matching expression feature in Azure federated credentials to use wildcards with GitHub Actions OIDC subject claims

2026-03-04T16:00:00-06:00 2026-03-04T16:00:00-06:00 https://josh-ops.com/posts/bulk-github-repo-sync-action/ Josh Johanning

A GitHub Action to mirror clone repositories between GitHub environments (GitHub.com, EMU, and GitHub Enterprise Server) with support for visibility control, Actions disabling, and archiving