diff --git a/.github/workflows/approve-dependabot.yml b/.github/workflows/approve-dependabot.yml index 358c24ea..3bd0ca04 100644 --- a/.github/workflows/approve-dependabot.yml +++ b/.github/workflows/approve-dependabot.yml @@ -35,7 +35,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true @@ -84,7 +84,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true @@ -131,7 +131,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true @@ -178,7 +178,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/build-and-publish-pre-release.yml b/.github/workflows/build-and-publish-pre-release.yml index ee27e259..147e519d 100644 --- a/.github/workflows/build-and-publish-pre-release.yml +++ b/.github/workflows/build-and-publish-pre-release.yml @@ -33,7 +33,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: block disable-sudo: true diff --git a/.github/workflows/build-and-publish-release.yml b/.github/workflows/build-and-publish-release.yml index 848a9cff..3dee8ab6 100644 --- a/.github/workflows/build-and-publish-release.yml +++ b/.github/workflows/build-and-publish-release.yml @@ -27,7 +27,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: block disable-sudo: true diff --git a/.github/workflows/create-prs-for-stale-branches.yml b/.github/workflows/create-prs-for-stale-branches.yml index f0c1321f..04bc4149 100644 --- a/.github/workflows/create-prs-for-stale-branches.yml +++ b/.github/workflows/create-prs-for-stale-branches.yml @@ -74,7 +74,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/dependabot.yml b/.github/workflows/dependabot.yml index 70f5d5ce..15633629 100644 --- a/.github/workflows/dependabot.yml +++ b/.github/workflows/dependabot.yml @@ -23,7 +23,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/dotnet-version.yml b/.github/workflows/dotnet-version.yml index e8332a27..3875f597 100644 --- a/.github/workflows/dotnet-version.yml +++ b/.github/workflows/dotnet-version.yml @@ -28,7 +28,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/merge-dependabot.yml b/.github/workflows/merge-dependabot.yml index c9c2ae79..6b2d9c3e 100644 --- a/.github/workflows/merge-dependabot.yml +++ b/.github/workflows/merge-dependabot.yml @@ -42,7 +42,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/on-pr-closed.yml b/.github/workflows/on-pr-closed.yml index 4e8e797a..0de5120c 100644 --- a/.github/workflows/on-pr-closed.yml +++ b/.github/workflows/on-pr-closed.yml @@ -15,7 +15,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/pr-lint.yml b/.github/workflows/pr-lint.yml index a080e3cd..ffe6ff57 100644 --- a/.github/workflows/pr-lint.yml +++ b/.github/workflows/pr-lint.yml @@ -96,7 +96,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true @@ -228,7 +228,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true @@ -271,7 +271,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true @@ -306,7 +306,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true @@ -341,7 +341,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true @@ -377,7 +377,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true @@ -424,7 +424,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true @@ -461,7 +461,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/pr-update.yml b/.github/workflows/pr-update.yml index 5a3fc286..de14f5ab 100644 --- a/.github/workflows/pr-update.yml +++ b/.github/workflows/pr-update.yml @@ -26,7 +26,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true @@ -67,7 +67,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true @@ -104,7 +104,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/pull-request.yml b/.github/workflows/pull-request.yml index 9b209084..8f214e68 100644 --- a/.github/workflows/pull-request.yml +++ b/.github/workflows/pull-request.yml @@ -54,7 +54,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/reformat-sql.yml b/.github/workflows/reformat-sql.yml index b71256a8..7f19ce65 100644 --- a/.github/workflows/reformat-sql.yml +++ b/.github/workflows/reformat-sql.yml @@ -34,7 +34,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/reformat-yaml.yml b/.github/workflows/reformat-yaml.yml index de3e76c4..9c7bb66a 100644 --- a/.github/workflows/reformat-yaml.yml +++ b/.github/workflows/reformat-yaml.yml @@ -35,7 +35,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true diff --git a/.github/workflows/update-labels.yml b/.github/workflows/update-labels.yml index c3cb22bd..41a6a9e2 100644 --- a/.github/workflows/update-labels.yml +++ b/.github/workflows/update-labels.yml @@ -24,7 +24,7 @@ jobs: run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" - name: "Harden Security" - uses: step-security/harden-runner@v2.7.1 + uses: step-security/harden-runner@v2.8.0 with: egress-policy: audit disable-sudo: true