diff --git a/.github/workflows/approve-dependabot.yml b/.github/workflows/approve-dependabot.yml index 9fae2d8b..6759f36e 100644 --- a/.github/workflows/approve-dependabot.yml +++ b/.github/workflows/approve-dependabot.yml @@ -35,7 +35,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -84,7 +84,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -131,7 +131,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -178,7 +178,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/build-and-publish-pre-release.yml b/.github/workflows/build-and-publish-pre-release.yml index 6841af35..011b63a4 100644 --- a/.github/workflows/build-and-publish-pre-release.yml +++ b/.github/workflows/build-and-publish-pre-release.yml @@ -33,7 +33,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: block disable-sudo: true diff --git a/.github/workflows/build-and-publish-release.yml b/.github/workflows/build-and-publish-release.yml index b9f218bd..04793717 100644 --- a/.github/workflows/build-and-publish-release.yml +++ b/.github/workflows/build-and-publish-release.yml @@ -27,7 +27,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: block disable-sudo: true diff --git a/.github/workflows/create-prs-for-stale-branches.yml b/.github/workflows/create-prs-for-stale-branches.yml index e4cf3ab7..33acb4b0 100644 --- a/.github/workflows/create-prs-for-stale-branches.yml +++ b/.github/workflows/create-prs-for-stale-branches.yml @@ -74,7 +74,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/dependabot.yml b/.github/workflows/dependabot.yml index 09d90bcb..064d1ee3 100644 --- a/.github/workflows/dependabot.yml +++ b/.github/workflows/dependabot.yml @@ -23,7 +23,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/dotnet-version.yml b/.github/workflows/dotnet-version.yml index c1c75791..af217c49 100644 --- a/.github/workflows/dotnet-version.yml +++ b/.github/workflows/dotnet-version.yml @@ -28,7 +28,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/merge-dependabot.yml b/.github/workflows/merge-dependabot.yml index a2aebb43..e3836645 100644 --- a/.github/workflows/merge-dependabot.yml +++ b/.github/workflows/merge-dependabot.yml @@ -42,7 +42,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/on-pr-closed.yml b/.github/workflows/on-pr-closed.yml index 0a794931..230265cf 100644 --- a/.github/workflows/on-pr-closed.yml +++ b/.github/workflows/on-pr-closed.yml @@ -15,7 +15,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/pr-lint.yml b/.github/workflows/pr-lint.yml index f0ab484e..65bb69ef 100644 --- a/.github/workflows/pr-lint.yml +++ b/.github/workflows/pr-lint.yml @@ -96,7 +96,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -228,7 +228,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -271,7 +271,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -306,7 +306,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -341,7 +341,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -377,7 +377,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -424,7 +424,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -461,7 +461,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/pr-update.yml b/.github/workflows/pr-update.yml index ca51ebc9..597c726f 100644 --- a/.github/workflows/pr-update.yml +++ b/.github/workflows/pr-update.yml @@ -26,7 +26,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -67,7 +67,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true @@ -104,7 +104,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/pull-request.yml b/.github/workflows/pull-request.yml index c08bbcbb..13852ad4 100644 --- a/.github/workflows/pull-request.yml +++ b/.github/workflows/pull-request.yml @@ -54,7 +54,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/reformat-sql.yml b/.github/workflows/reformat-sql.yml index c912cb49..901df3a2 100644 --- a/.github/workflows/reformat-sql.yml +++ b/.github/workflows/reformat-sql.yml @@ -34,7 +34,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/reformat-yaml.yml b/.github/workflows/reformat-yaml.yml index c93dc0d4..0c88ea72 100644 --- a/.github/workflows/reformat-yaml.yml +++ b/.github/workflows/reformat-yaml.yml @@ -35,7 +35,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/update-labels.yml b/.github/workflows/update-labels.yml index 0fe1a853..279f3eae 100644 --- a/.github/workflows/update-labels.yml +++ b/.github/workflows/update-labels.yml @@ -24,7 +24,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.8.1 + uses: step-security/harden-runner@v2.9.0 with: egress-policy: audit disable-sudo: true