Skip to content

ci(GitHub): Bump step-security/harden-runner from 2.8.0 to 2.9.0 #8

ci(GitHub): Bump step-security/harden-runner from 2.8.0 to 2.9.0

ci(GitHub): Bump step-security/harden-runner from 2.8.0 to 2.9.0 #8

Workflow file for this run

name: PR Cache Cleanup
on:
pull_request:
types: [ closed ]
jobs:
pr-clean-cache:
runs-on: ubuntu-latest
timeout-minutes: 5
steps:
- name: Harden Runner
uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
with:
disable-sudo: true
egress-policy: block
allowed-endpoints: >
api.github.com:443
objects.githubusercontent.com:443
- name: Clean up
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
REPO: ${{ github.repository }}
BRANCH: refs/pull/${{ github.event.pull_request.number }}/merge
run: |
gh extension install actions/gh-actions-cache
echo "Fetching list of cache key"
cacheKeysForPR=$(gh actions-cache list -R "$REPO" -B "$BRANCH" -L 100 | cut -f 1 )
## Setting this to not fail the workflow while deleting cache keys.
set +e
echo "Deleting caches..."
for cacheKey in $cacheKeysForPR
do
gh actions-cache delete "$cacheKey" -R "$REPO" -B "$BRANCH" --confirm
echo " - Deleted cache key: $cacheKey"
done
echo "Done"