From 348953a94869cca974c9b9b14777a226f397b542 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 17 Sep 2024 21:19:45 +0000 Subject: [PATCH] chore(deps): Bump step-security/harden-runner from 2.8.1 to 2.10.1 Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.8.1 to 2.10.1. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](https://github.com/step-security/harden-runner/compare/17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6...91182cccc01eb5e619899d80e4e971d6181294a7) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/check.dependency-review.yml | 2 +- .github/workflows/check.gradle-wrapper.yml | 2 +- .github/workflows/check.hashes.yml | 2 +- .github/workflows/ci.build-test.yml | 2 +- .github/workflows/ci.dependency-graph.yml | 2 +- .github/workflows/ci.publish-package.yml | 6 +++--- .github/workflows/deploy.site.yml | 4 ++-- 7 files changed, 10 insertions(+), 10 deletions(-) diff --git a/.github/workflows/check.dependency-review.yml b/.github/workflows/check.dependency-review.yml index daa272fd..11cc6542 100644 --- a/.github/workflows/check.dependency-review.yml +++ b/.github/workflows/check.dependency-review.yml @@ -13,7 +13,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: egress-policy: audit - name: 'Setup: Checkout' diff --git a/.github/workflows/check.gradle-wrapper.yml b/.github/workflows/check.gradle-wrapper.yml index 94aae6a1..47ab240f 100644 --- a/.github/workflows/check.gradle-wrapper.yml +++ b/.github/workflows/check.gradle-wrapper.yml @@ -13,7 +13,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: egress-policy: audit - name: 'Setup: Checkout' diff --git a/.github/workflows/check.hashes.yml b/.github/workflows/check.hashes.yml index ff6356d6..5acd84ca 100644 --- a/.github/workflows/check.hashes.yml +++ b/.github/workflows/check.hashes.yml @@ -13,7 +13,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: egress-policy: audit - name: 'Setup: Checkout' diff --git a/.github/workflows/ci.build-test.yml b/.github/workflows/ci.build-test.yml index 2dc8b5af..c686e268 100644 --- a/.github/workflows/ci.build-test.yml +++ b/.github/workflows/ci.build-test.yml @@ -26,7 +26,7 @@ jobs: runs-on: ubuntu-latest steps: - name: 'Setup: Harden Runner' - uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: egress-policy: audit - name: 'Setup: Checkout' diff --git a/.github/workflows/ci.dependency-graph.yml b/.github/workflows/ci.dependency-graph.yml index e3e482ec..23746abb 100644 --- a/.github/workflows/ci.dependency-graph.yml +++ b/.github/workflows/ci.dependency-graph.yml @@ -15,7 +15,7 @@ jobs: contents: write # needed for graph write steps: - name: Harden Runner - uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: disable-sudo: true egress-policy: block diff --git a/.github/workflows/ci.publish-package.yml b/.github/workflows/ci.publish-package.yml index 82a76722..829697e6 100644 --- a/.github/workflows/ci.publish-package.yml +++ b/.github/workflows/ci.publish-package.yml @@ -90,7 +90,7 @@ jobs: id-token: write steps: - name: 'Setup: Harden Runner' - uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: egress-policy: audit - name: 'Setup: Checkout' @@ -165,7 +165,7 @@ jobs: if: startsWith(github.ref, 'refs/tags/') || inputs.release steps: - name: 'Setup: Harden Runner' - uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: egress-policy: audit - name: 'Artifact: Package' @@ -196,7 +196,7 @@ jobs: packages: write steps: - name: 'Setup: Harden Runner' - uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: egress-policy: audit - name: 'Setup: Checkout' diff --git a/.github/workflows/deploy.site.yml b/.github/workflows/deploy.site.yml index 91dbb7e8..3cb1f340 100644 --- a/.github/workflows/deploy.site.yml +++ b/.github/workflows/deploy.site.yml @@ -19,7 +19,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: disable-sudo: true egress-policy: audit @@ -57,7 +57,7 @@ jobs: needs: build steps: - name: Harden Runner - uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: disable-sudo: true egress-policy: block