diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index d6612a5a..278f4402 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -31,7 +31,7 @@ jobs: steps: - name: 'Harden Runner' - uses: 'step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d' # v2.16.1 + uses: 'step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176' # v2.17.0 with: egress-policy: 'audit' diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index b35447be..565015fc 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -11,7 +11,7 @@ jobs: runs-on: 'ubuntu-latest' steps: - name: 'Harden Runner' - uses: 'step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d' # v2.16.1 + uses: 'step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176' # v2.17.0 with: egress-policy: 'audit' diff --git a/.github/workflows/docs.yml b/.github/workflows/docs.yml index 7636bf96..4ed5de72 100644 --- a/.github/workflows/docs.yml +++ b/.github/workflows/docs.yml @@ -19,7 +19,7 @@ jobs: runs-on: 'ubuntu-latest' steps: - name: 'Harden the runner (Audit all outbound calls)' - uses: 'step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d' # v2.16.1 + uses: 'step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176' # v2.17.0 with: egress-policy: 'audit' @@ -53,7 +53,7 @@ jobs: url: '${{ steps.deployment.outputs.page_url }}' steps: - name: 'Harden the runner (Audit all outbound calls)' - uses: 'step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d' # v2.16.1 + uses: 'step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176' # v2.17.0 with: egress-policy: 'audit' diff --git a/.github/workflows/lf-build.yml b/.github/workflows/lf-build.yml index 0ebf3798..104cb9e8 100644 --- a/.github/workflows/lf-build.yml +++ b/.github/workflows/lf-build.yml @@ -28,7 +28,7 @@ jobs: steps: - name: 'Harden the runner (Audit all outbound calls)' - uses: 'step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d' # v2.16.1 + uses: 'step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176' # v2.17.0 with: egress-policy: 'audit' diff --git a/.github/workflows/lf-release.yml b/.github/workflows/lf-release.yml index 26f5c7f9..efc92372 100644 --- a/.github/workflows/lf-release.yml +++ b/.github/workflows/lf-release.yml @@ -17,7 +17,7 @@ jobs: steps: - name: 'Harden the runner (Audit all outbound calls)' - uses: 'step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d' # v2.16.1 + uses: 'step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176' # v2.17.0 with: egress-policy: 'audit' diff --git a/.github/workflows/pre-commit-autoupdate.yml b/.github/workflows/pre-commit-autoupdate.yml index d8d696e6..2729d073 100644 --- a/.github/workflows/pre-commit-autoupdate.yml +++ b/.github/workflows/pre-commit-autoupdate.yml @@ -15,7 +15,7 @@ jobs: pull-requests: 'write' steps: - name: 'Harden the runner (Audit all outbound calls)' - uses: 'step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d' # v2.16.1 + uses: 'step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176' # v2.17.0 with: egress-policy: 'audit' diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 6761e2df..a70563e3 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -18,7 +18,7 @@ jobs: steps: - name: 'Harden Runner' - uses: 'step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d' # v2.16.1 + uses: 'step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176' # v2.17.0 with: egress-policy: 'audit'