diff --git a/.github/workflows/approve-dependabot.yml b/.github/workflows/approve-dependabot.yml index 87cd23f6..d314e465 100644 --- a/.github/workflows/approve-dependabot.yml +++ b/.github/workflows/approve-dependabot.yml @@ -35,7 +35,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -84,7 +84,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -131,7 +131,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -178,7 +178,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/build-and-publish-pre-release.yml b/.github/workflows/build-and-publish-pre-release.yml index ee870a49..cbaa9dff 100644 --- a/.github/workflows/build-and-publish-pre-release.yml +++ b/.github/workflows/build-and-publish-pre-release.yml @@ -33,7 +33,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: block disable-sudo: true diff --git a/.github/workflows/build-and-publish-release.yml b/.github/workflows/build-and-publish-release.yml index 2682ed2d..bb3db012 100644 --- a/.github/workflows/build-and-publish-release.yml +++ b/.github/workflows/build-and-publish-release.yml @@ -27,7 +27,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: block disable-sudo: true diff --git a/.github/workflows/create-prs-for-stale-branches.yml b/.github/workflows/create-prs-for-stale-branches.yml index ae6171ff..fa17aa39 100644 --- a/.github/workflows/create-prs-for-stale-branches.yml +++ b/.github/workflows/create-prs-for-stale-branches.yml @@ -74,7 +74,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/dependabot.yml b/.github/workflows/dependabot.yml index c713d906..9407c496 100644 --- a/.github/workflows/dependabot.yml +++ b/.github/workflows/dependabot.yml @@ -23,7 +23,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/dotnet-version.yml b/.github/workflows/dotnet-version.yml index 60cfaaac..81cd0149 100644 --- a/.github/workflows/dotnet-version.yml +++ b/.github/workflows/dotnet-version.yml @@ -28,7 +28,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/merge-dependabot.yml b/.github/workflows/merge-dependabot.yml index 8ca1bc0c..e979f8ea 100644 --- a/.github/workflows/merge-dependabot.yml +++ b/.github/workflows/merge-dependabot.yml @@ -42,7 +42,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/on-pr-closed.yml b/.github/workflows/on-pr-closed.yml index 1cb70537..7861eed7 100644 --- a/.github/workflows/on-pr-closed.yml +++ b/.github/workflows/on-pr-closed.yml @@ -15,7 +15,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/oss-scorecared.yml b/.github/workflows/oss-scorecared.yml index e85abcea..66dce07e 100644 --- a/.github/workflows/oss-scorecared.yml +++ b/.github/workflows/oss-scorecared.yml @@ -23,7 +23,7 @@ jobs: steps: - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: block disable-sudo: true diff --git a/.github/workflows/pr-lint.yml b/.github/workflows/pr-lint.yml index 9fdfb56c..0185bad5 100644 --- a/.github/workflows/pr-lint.yml +++ b/.github/workflows/pr-lint.yml @@ -96,7 +96,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -228,7 +228,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -271,7 +271,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -306,7 +306,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -341,7 +341,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -377,7 +377,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -424,7 +424,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -461,7 +461,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/pr-update.yml b/.github/workflows/pr-update.yml index 67a9072f..40102dba 100644 --- a/.github/workflows/pr-update.yml +++ b/.github/workflows/pr-update.yml @@ -26,7 +26,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -67,7 +67,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -104,7 +104,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/pull-request.yml b/.github/workflows/pull-request.yml index 2b1f0515..9dd1d6da 100644 --- a/.github/workflows/pull-request.yml +++ b/.github/workflows/pull-request.yml @@ -54,7 +54,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/reformat-sql.yml b/.github/workflows/reformat-sql.yml index 831e04a4..c07f0123 100644 --- a/.github/workflows/reformat-sql.yml +++ b/.github/workflows/reformat-sql.yml @@ -34,7 +34,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/reformat-yaml.yml b/.github/workflows/reformat-yaml.yml index 2407df8a..6ed1541d 100644 --- a/.github/workflows/reformat-yaml.yml +++ b/.github/workflows/reformat-yaml.yml @@ -35,7 +35,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/todos.yml b/.github/workflows/todos.yml index d87f4afe..b121d3dd 100644 --- a/.github/workflows/todos.yml +++ b/.github/workflows/todos.yml @@ -20,7 +20,7 @@ jobs: steps: - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: block disable-sudo: true diff --git a/.github/workflows/update-labels.yml b/.github/workflows/update-labels.yml index 94d9e21b..21b316f5 100644 --- a/.github/workflows/update-labels.yml +++ b/.github/workflows/update-labels.yml @@ -24,7 +24,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true