https://github.com/dorny/paths-filter ? looking into it.

Definitely going through and pinning all my 3rd party actions to specific commits e.g. party/package@<commitsha>.