diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 36cb0d56..7d92a0f7 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -8,7 +8,7 @@ jobs: if: ${{ github.actor != 'panther-bot-automation' }} runs-on: ubuntu-latest steps: - - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 + - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 with: disable-sudo: true egress-policy: block diff --git a/.github/workflows/fmt.yml b/.github/workflows/fmt.yml index 31b760c2..03937209 100644 --- a/.github/workflows/fmt.yml +++ b/.github/workflows/fmt.yml @@ -15,7 +15,7 @@ jobs: if: ${{ github.actor != 'panther-bot-automation' }} runs-on: ubuntu-latest steps: - - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 + - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 with: disable-sudo: true egress-policy: block diff --git a/.github/workflows/test_release_publish.yml b/.github/workflows/test_release_publish.yml index 7d5cf7cc..28e687b1 100644 --- a/.github/workflows/test_release_publish.yml +++ b/.github/workflows/test_release_publish.yml @@ -11,7 +11,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 + - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 with: egress-policy: audit diff --git a/.github/workflows/version_bump_pr.yml b/.github/workflows/version_bump_pr.yml index c28da2a2..536c0eee 100644 --- a/.github/workflows/version_bump_pr.yml +++ b/.github/workflows/version_bump_pr.yml @@ -16,7 +16,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 + - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 with: egress-policy: audit - name: Check out the repository