ci: Restore security rationale comment for SHA-pinned action

Co-Authored-By: Claude Sonnet 4.6 (1M context) <noreply@anthropic.com>

Author: jparrabedoya

.github/workflows/docs.yml

@@ -21,7 +21,9 @@ jobs:
 
     - name: Deploy
       if: success()
-      uses: crazy-max/ghaction-github-pages@1d6ee9b181a81033a16bd707a1401afa978daab4 # v5.0.0
+      # use the specific sha of 3rd party libraries for security reasons https://julienrenaux.fr/2019/12/20/github-actions-security-risk/
+      # Using tag v5.0.0
+      uses: crazy-max/ghaction-github-pages@1d6ee9b181a81033a16bd707a1401afa978daab4
       with:
         target_branch: gh-pages
         build_dir: ./docs