From 773bdca8b5fd4cd2b2b456d1c9e6d3c18f6aeeb7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 3 Oct 2023 05:30:04 +0000 Subject: [PATCH] gha: bump step-security/harden-runner from 2.5.1 to 2.6.0 Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.5.1 to 2.6.0. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](https://github.com/step-security/harden-runner/compare/8ca2b8b2ece13480cda6dacd3511b49857a23c09...1b05615854632b887b69ae1be8cbefe72d3ae423) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/build.yml | 4 ++-- .github/workflows/cflite.yml | 2 +- .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/codespell.yml | 2 +- .github/workflows/dependency-review.yml | 2 +- .github/workflows/gitlabsync.yml | 2 +- .github/workflows/linter.yml | 2 +- .github/workflows/release.yml | 2 +- .github/workflows/scan.yml | 4 ++-- .github/workflows/scorecard.yml | 2 +- .github/workflows/semgrep.yml | 2 +- .github/workflows/snyk.yml | 2 +- 12 files changed, 14 insertions(+), 14 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 31e447cb..707540e5 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -18,7 +18,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Harden Runner - uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09 # v1 + uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 # v1 with: egress-policy: block disable-telemetry: true @@ -50,7 +50,7 @@ jobs: runs-on: ${{ matrix.platform }} steps: - name: Harden Runner - uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09 # v1 + uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 # v1 with: egress-policy: audit disable-telemetry: false diff --git a/.github/workflows/cflite.yml b/.github/workflows/cflite.yml index 1f204b68..3e5da407 100644 --- a/.github/workflows/cflite.yml +++ b/.github/workflows/cflite.yml @@ -18,7 +18,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09 # v1 + uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 # v1 with: egress-policy: audit disable-telemetry: true diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 93edba29..c6808145 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -40,7 +40,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09 # v1 + uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 # v1 with: egress-policy: block disable-telemetry: true diff --git a/.github/workflows/codespell.yml b/.github/workflows/codespell.yml index b3b2a708..4c1208e1 100644 --- a/.github/workflows/codespell.yml +++ b/.github/workflows/codespell.yml @@ -26,7 +26,7 @@ jobs: steps: # Checkout the code base # - name: Harden Runner - uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09 # v1 + uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 # v1 with: egress-policy: block disable-telemetry: true diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 160aefea..252337d4 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -11,7 +11,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Harden Runner - uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09 + uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 with: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs diff --git a/.github/workflows/gitlabsync.yml b/.github/workflows/gitlabsync.yml index ff1e0a8f..4b99d995 100644 --- a/.github/workflows/gitlabsync.yml +++ b/.github/workflows/gitlabsync.yml @@ -16,7 +16,7 @@ jobs: name: Git Repo Sync steps: - name: Harden Runner - uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09 # v1 + uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 # v1 with: egress-policy: block disable-telemetry: true diff --git a/.github/workflows/linter.yml b/.github/workflows/linter.yml index 64100313..2982cabf 100644 --- a/.github/workflows/linter.yml +++ b/.github/workflows/linter.yml @@ -28,7 +28,7 @@ jobs: steps: # Checkout the code base # - name: Harden Runner - uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09 # v1 + uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 # v1 with: egress-policy: block disable-telemetry: true diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 7fd41e4b..f3b04491 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -23,7 +23,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09 # v1 + uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 # v1 with: egress-policy: audit disable-telemetry: false diff --git a/.github/workflows/scan.yml b/.github/workflows/scan.yml index c81626ec..0912bbb8 100644 --- a/.github/workflows/scan.yml +++ b/.github/workflows/scan.yml @@ -26,7 +26,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09 # v1 + uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 # v1 with: egress-policy: block disable-telemetry: true @@ -63,7 +63,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09 # v1 + uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 # v1 with: egress-policy: block disable-telemetry: true diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 9e740320..bb96572b 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -25,7 +25,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09 # v1 + uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 # v1 with: disable-sudo: true egress-policy: block diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml index abb9bace..9ca53b48 100644 --- a/.github/workflows/semgrep.yml +++ b/.github/workflows/semgrep.yml @@ -15,7 +15,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Harden Runner - uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09 # v1 + uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 # v1 with: egress-policy: block disable-telemetry: true diff --git a/.github/workflows/snyk.yml b/.github/workflows/snyk.yml index 7e5b84a0..60028eb5 100644 --- a/.github/workflows/snyk.yml +++ b/.github/workflows/snyk.yml @@ -19,7 +19,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09 # v1 + uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 # v1 with: egress-policy: block disable-telemetry: true