Skip to content

Commit

Permalink
adjusted egress policy to match recommendation
Browse files Browse the repository at this point in the history
  • Loading branch information
@jksolbakken
jksolbakken committed Jul 10, 2024
1 parent f0f6a98 commit 1e8fdec
Showing 1 changed file with 10 additions and 8 deletions.
18 changes: 10 additions & 8 deletions .github/workflows/scorecard.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,14 +26,16 @@ jobs:
disable-sudo: true
egress-policy: block
allowed-endpoints: >
api.osv.dev:443
api.securityscorecards.dev:443
bestpractices.coreinfrastructure.org:443
fulcio.sigstore.dev:443
github.com:443
api.github.com:443
rekor.sigstore.dev:443
sigstore-tuf-root.storage.googleapis.com:443
api.github.com:443
api.osv.dev:443
api.securityscorecards.dev:443
bestpractices.coreinfrastructure.org:443
fulcio.sigstore.dev:443
github.com:443
oss-fuzz-build-logs.storage.googleapis.com:443
rekor.sigstore.dev:443
sigstore-tuf-root.storage.googleapis.com:443
tuf-repo-cdn.sigstore.dev:443
www.bestpractices.dev:443
- name: "Checkout code"
Expand Down

0 comments on commit 1e8fdec

Please sign in to comment.