[greatjack613]

The "blue badges" of software packages. Honestly not a bad idea but who and what determines a package to be "trusted"? Will there be transparency into the decisions?

[woodruffw]

This has nothing to do with trusting packages; it’s about delegating publishing authority to a service like GitHub Actions.

[verdverm]

How do you know that what the action is doing is trustworthy?

[Takennickname]

You didn't read the link.