From cf2b86fd53343b3c28126003fd87d3b93511242f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 7 Jun 2024 21:14:27 +0000 Subject: [PATCH] chore(deps): Bump step-security/harden-runner from 2.8.0 to 2.8.1 Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.8.0 to 2.8.1. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](https://github.com/step-security/harden-runner/compare/f086349bfa2bd1361f7909c78558e816508cdc10...17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- .github/workflows/checks.apicheck.yml | 2 +- .github/workflows/checks.codeql.yml | 2 +- .github/workflows/checks.dependency-review.yml | 2 +- .github/workflows/checks.detekt.yml | 2 +- .github/workflows/checks.formatting.yml | 2 +- .github/workflows/checks.gradle-wrapper.yml | 2 +- .github/workflows/checks.model.yml | 4 ++-- .github/workflows/checks.qodana.yml | 2 +- .github/workflows/checks.scorecards.yml | 2 +- .github/workflows/checks.sonar.yml | 2 +- .github/workflows/job.bench.yml | 2 +- .github/workflows/job.build.yml | 4 ++-- .github/workflows/job.cli.yml | 4 ++-- .github/workflows/job.containers.yml | 4 ++-- .github/workflows/job.copybara.yml | 4 ++-- .github/workflows/job.deploy-model.yml | 2 +- .github/workflows/job.deploy.yml | 2 +- .github/workflows/job.labeler.yml | 2 +- .github/workflows/job.site.yml | 6 +++--- .github/workflows/job.test.yml | 4 ++-- .github/workflows/on.pr.yml | 2 +- .github/workflows/on.scheduled.yml | 6 +++--- .github/workflows/publish.maven.yml | 2 +- 23 files changed, 33 insertions(+), 33 deletions(-) diff --git a/.github/workflows/checks.apicheck.yml b/.github/workflows/checks.apicheck.yml index e66499f7c9..80f4441592 100644 --- a/.github/workflows/checks.apicheck.yml +++ b/.github/workflows/checks.apicheck.yml @@ -61,7 +61,7 @@ jobs: continue-on-error: true steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-sudo: true egress-policy: audit diff --git a/.github/workflows/checks.codeql.yml b/.github/workflows/checks.codeql.yml index ef76ddd524..cdf5948c76 100644 --- a/.github/workflows/checks.codeql.yml +++ b/.github/workflows/checks.codeql.yml @@ -57,7 +57,7 @@ jobs: language: ["javascript-typescript"] steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-sudo: true egress-policy: block diff --git a/.github/workflows/checks.dependency-review.yml b/.github/workflows/checks.dependency-review.yml index 740b990073..9e482e314b 100644 --- a/.github/workflows/checks.dependency-review.yml +++ b/.github/workflows/checks.dependency-review.yml @@ -26,7 +26,7 @@ jobs: runs-on: ubuntu-latest steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-sudo: true egress-policy: block diff --git a/.github/workflows/checks.detekt.yml b/.github/workflows/checks.detekt.yml index a144062ab1..81016b67c8 100644 --- a/.github/workflows/checks.detekt.yml +++ b/.github/workflows/checks.detekt.yml @@ -49,7 +49,7 @@ jobs: continue-on-error: true steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-sudo: true egress-policy: audit diff --git a/.github/workflows/checks.formatting.yml b/.github/workflows/checks.formatting.yml index f7b6504251..5aca63dae1 100644 --- a/.github/workflows/checks.formatting.yml +++ b/.github/workflows/checks.formatting.yml @@ -61,7 +61,7 @@ jobs: continue-on-error: true steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-sudo: true egress-policy: audit diff --git a/.github/workflows/checks.gradle-wrapper.yml b/.github/workflows/checks.gradle-wrapper.yml index cb98337b9f..fccaf3aeed 100644 --- a/.github/workflows/checks.gradle-wrapper.yml +++ b/.github/workflows/checks.gradle-wrapper.yml @@ -26,7 +26,7 @@ jobs: runs-on: ubuntu-latest steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-sudo: true egress-policy: block diff --git a/.github/workflows/checks.model.yml b/.github/workflows/checks.model.yml index d6ccc66272..ed75495568 100644 --- a/.github/workflows/checks.model.yml +++ b/.github/workflows/checks.model.yml @@ -82,7 +82,7 @@ jobs: contents: "read" steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-sudo: true egress-policy: block @@ -120,7 +120,7 @@ jobs: continue-on-error: ${{ contains(github.event.pull_request.labels.*.name, 'ci:buf-breaking-ignore') }} steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-sudo: true egress-policy: block diff --git a/.github/workflows/checks.qodana.yml b/.github/workflows/checks.qodana.yml index bfe1439849..b955a5c51e 100644 --- a/.github/workflows/checks.qodana.yml +++ b/.github/workflows/checks.qodana.yml @@ -52,7 +52,7 @@ jobs: continue-on-error: true steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit - name: "Setup: Checkout" diff --git a/.github/workflows/checks.scorecards.yml b/.github/workflows/checks.scorecards.yml index 40e7ecb84d..ffbb74630e 100644 --- a/.github/workflows/checks.scorecards.yml +++ b/.github/workflows/checks.scorecards.yml @@ -35,7 +35,7 @@ jobs: steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit - name: "Setup: Checkout" diff --git a/.github/workflows/checks.sonar.yml b/.github/workflows/checks.sonar.yml index 8f29ddcdcd..85fb3dfd19 100644 --- a/.github/workflows/checks.sonar.yml +++ b/.github/workflows/checks.sonar.yml @@ -52,7 +52,7 @@ jobs: continue-on-error: true steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit - name: "Setup: Checkout" diff --git a/.github/workflows/job.bench.yml b/.github/workflows/job.bench.yml index a565363f7a..10e3296791 100644 --- a/.github/workflows/job.bench.yml +++ b/.github/workflows/job.bench.yml @@ -67,7 +67,7 @@ jobs: steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit - name: "Setup: Checkout" diff --git a/.github/workflows/job.build.yml b/.github/workflows/job.build.yml index 9c33b780f1..1ac73e2856 100644 --- a/.github/workflows/job.build.yml +++ b/.github/workflows/job.build.yml @@ -184,7 +184,7 @@ jobs: steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-sudo: true egress-policy: audit @@ -279,7 +279,7 @@ jobs: steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-sudo: true egress-policy: audit diff --git a/.github/workflows/job.cli.yml b/.github/workflows/job.cli.yml index 973af1c435..4b25cb0444 100644 --- a/.github/workflows/job.cli.yml +++ b/.github/workflows/job.cli.yml @@ -137,7 +137,7 @@ jobs: steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit - name: "Setup: Checkout" @@ -279,7 +279,7 @@ jobs: steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit - name: "Setup: Checkout" diff --git a/.github/workflows/job.containers.yml b/.github/workflows/job.containers.yml index f441c8f782..c158995e4e 100644 --- a/.github/workflows/job.containers.yml +++ b/.github/workflows/job.containers.yml @@ -179,7 +179,7 @@ jobs: steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit - name: "Setup: Checkout" @@ -291,7 +291,7 @@ jobs: steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit - name: "Setup: Checkout" diff --git a/.github/workflows/job.copybara.yml b/.github/workflows/job.copybara.yml index 1a257b69e7..7952391b03 100644 --- a/.github/workflows/job.copybara.yml +++ b/.github/workflows/job.copybara.yml @@ -28,7 +28,7 @@ jobs: (github.event_name == 'pull_request' && contains(github.event.pull_request.labels.*.name, 'migrate:protocol')) steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit - name: "Setup: Checkout" @@ -62,7 +62,7 @@ jobs: steps: # Pull code. - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit - name: "Setup: Checkout" diff --git a/.github/workflows/job.deploy-model.yml b/.github/workflows/job.deploy-model.yml index 30e00333cb..a270231d60 100644 --- a/.github/workflows/job.deploy-model.yml +++ b/.github/workflows/job.deploy-model.yml @@ -42,7 +42,7 @@ jobs: contents: "read" steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit - name: "Setup: Checkout" diff --git a/.github/workflows/job.deploy.yml b/.github/workflows/job.deploy.yml index fa5aeee14b..defed7dcb8 100644 --- a/.github/workflows/job.deploy.yml +++ b/.github/workflows/job.deploy.yml @@ -93,7 +93,7 @@ jobs: FLY_API_TOKEN: ${{ secrets.FLY_API_TOKEN }} steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit - name: "Setup: Checkout" diff --git a/.github/workflows/job.labeler.yml b/.github/workflows/job.labeler.yml index 4004a2128a..3890c860bb 100644 --- a/.github/workflows/job.labeler.yml +++ b/.github/workflows/job.labeler.yml @@ -27,7 +27,7 @@ jobs: runs-on: ubuntu-latest steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit - name: "Bot: Labeler Triage" diff --git a/.github/workflows/job.site.yml b/.github/workflows/job.site.yml index b3024b1328..e5b62bb6ed 100644 --- a/.github/workflows/job.site.yml +++ b/.github/workflows/job.site.yml @@ -40,7 +40,7 @@ jobs: steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit - name: "Setup: Checkout" @@ -160,7 +160,7 @@ jobs: steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit @@ -287,7 +287,7 @@ jobs: steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit diff --git a/.github/workflows/job.test.yml b/.github/workflows/job.test.yml index 1ad7fe28d0..bd3e149ddb 100644 --- a/.github/workflows/job.test.yml +++ b/.github/workflows/job.test.yml @@ -154,7 +154,7 @@ jobs: steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-sudo: true egress-policy: audit @@ -416,7 +416,7 @@ jobs: if: inputs.native steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit - name: "Setup: Checkout" diff --git a/.github/workflows/on.pr.yml b/.github/workflows/on.pr.yml index d69535f58c..725c496c69 100644 --- a/.github/workflows/on.pr.yml +++ b/.github/workflows/on.pr.yml @@ -53,7 +53,7 @@ jobs: srcs: ${{ steps.filter.outputs.srcs }} steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-sudo: true egress-policy: block diff --git a/.github/workflows/on.scheduled.yml b/.github/workflows/on.scheduled.yml index 6ae02ac08f..8c64de9fec 100644 --- a/.github/workflows/on.scheduled.yml +++ b/.github/workflows/on.scheduled.yml @@ -39,7 +39,7 @@ jobs: pull-requests: "write" steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit @@ -66,7 +66,7 @@ jobs: pull-requests: "write" steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit @@ -140,7 +140,7 @@ jobs: shell: bash steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit diff --git a/.github/workflows/publish.maven.yml b/.github/workflows/publish.maven.yml index cd4f477746..6c5e088dc7 100644 --- a/.github/workflows/publish.maven.yml +++ b/.github/workflows/publish.maven.yml @@ -165,7 +165,7 @@ jobs: BUILDLESS_APIKEY: ${{ secrets.BUILDLESS_APIKEY }} steps: - name: "Setup: Harden Runner" - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: egress-policy: audit - name: "Setup: Checkout"