diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 66276a9..eeb8066 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -18,7 +18,7 @@ jobs: runs-on: ubuntu-24.04 steps: - name: Harden Runner - uses: step-security/harden-runner@446798f8213ac2e75931c1b0769676d927801858 # v1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v1 with: egress-policy: block disable-telemetry: true @@ -50,7 +50,7 @@ jobs: runs-on: ${{ matrix.platform }} steps: - name: Harden Runner - uses: step-security/harden-runner@446798f8213ac2e75931c1b0769676d927801858 # v1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v1 with: egress-policy: audit disable-telemetry: false diff --git a/.github/workflows/cflite.yml b/.github/workflows/cflite.yml index 182707d..3d5afd8 100644 --- a/.github/workflows/cflite.yml +++ b/.github/workflows/cflite.yml @@ -18,7 +18,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@446798f8213ac2e75931c1b0769676d927801858 # v1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v1 with: egress-policy: audit disable-telemetry: true diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index a8cf5fb..9c3f350 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -40,7 +40,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@446798f8213ac2e75931c1b0769676d927801858 # v1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v1 with: egress-policy: block disable-telemetry: true diff --git a/.github/workflows/codespell.yml b/.github/workflows/codespell.yml index 1b8e88d..9b5a7ee 100644 --- a/.github/workflows/codespell.yml +++ b/.github/workflows/codespell.yml @@ -26,7 +26,7 @@ jobs: steps: # Checkout the code base # - name: Harden Runner - uses: step-security/harden-runner@446798f8213ac2e75931c1b0769676d927801858 # v1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v1 with: egress-policy: block disable-telemetry: true diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 2bd05a0..7d305d1 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -11,7 +11,7 @@ jobs: runs-on: ubuntu-24.04 steps: - name: Harden Runner - uses: step-security/harden-runner@446798f8213ac2e75931c1b0769676d927801858 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 with: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs diff --git a/.github/workflows/gitlabsync.yml b/.github/workflows/gitlabsync.yml index 23f70f7..aa4892f 100644 --- a/.github/workflows/gitlabsync.yml +++ b/.github/workflows/gitlabsync.yml @@ -16,7 +16,7 @@ jobs: name: Git Repo Sync steps: - name: Harden Runner - uses: step-security/harden-runner@446798f8213ac2e75931c1b0769676d927801858 # v1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v1 with: egress-policy: block disable-telemetry: true diff --git a/.github/workflows/linter.yml b/.github/workflows/linter.yml index e9e6ce4..ae4f623 100644 --- a/.github/workflows/linter.yml +++ b/.github/workflows/linter.yml @@ -28,7 +28,7 @@ jobs: steps: # Checkout the code base # - name: Harden Runner - uses: step-security/harden-runner@446798f8213ac2e75931c1b0769676d927801858 # v1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v1 with: egress-policy: block disable-telemetry: true diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 6d89312..f749dc8 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -23,7 +23,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@446798f8213ac2e75931c1b0769676d927801858 # v1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v1 with: egress-policy: audit disable-telemetry: false diff --git a/.github/workflows/scan.yml b/.github/workflows/scan.yml index de80ece..df7090b 100644 --- a/.github/workflows/scan.yml +++ b/.github/workflows/scan.yml @@ -26,7 +26,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@446798f8213ac2e75931c1b0769676d927801858 # v1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v1 with: egress-policy: block disable-telemetry: true @@ -63,7 +63,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@446798f8213ac2e75931c1b0769676d927801858 # v1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v1 with: egress-policy: block disable-telemetry: true diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 289a04b..3c73550 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -25,7 +25,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@446798f8213ac2e75931c1b0769676d927801858 # v1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v1 with: disable-sudo: true egress-policy: block diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml index 72331cf..46fbd86 100644 --- a/.github/workflows/semgrep.yml +++ b/.github/workflows/semgrep.yml @@ -15,7 +15,7 @@ jobs: runs-on: ubuntu-24.04 steps: - name: Harden Runner - uses: step-security/harden-runner@446798f8213ac2e75931c1b0769676d927801858 # v1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v1 with: egress-policy: block disable-telemetry: true diff --git a/.github/workflows/snyk.yml b/.github/workflows/snyk.yml index 083fceb..d12fec4 100644 --- a/.github/workflows/snyk.yml +++ b/.github/workflows/snyk.yml @@ -19,7 +19,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@446798f8213ac2e75931c1b0769676d927801858 # v1 + uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v1 with: egress-policy: block disable-telemetry: true