From cf44c96da7aa47c947b85fe14e9c9f737a9f3a8b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 10 Apr 2026 14:47:36 +0000
Subject: [PATCH] chore(deps): bump step-security/harden-runner from 2.16.1 to
 2.17.0

Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.16.1 to 2.17.0.
- [Release notes](https://github.com/step-security/harden-runner/releases)
- [Commits](https://github.com/step-security/harden-runner/compare/fe104658747b27e96e4f7e80cd0a94068e53901d...f808768d1510423e83855289c910610ca9b43176)

---
updated-dependencies:
- dependency-name: step-security/harden-runner
  dependency-version: 2.17.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/codeql.yml                | 2 +-
 .github/workflows/dependency-review.yml     | 2 +-
 .github/workflows/docs.yml                  | 4 ++--
 .github/workflows/lf-build.yml              | 2 +-
 .github/workflows/lf-release.yml            | 2 +-
 .github/workflows/pre-commit-autoupdate.yml | 2 +-
 .github/workflows/scorecard.yml             | 2 +-
 7 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index d6612a5a..278f4402 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -31,7 +31,7 @@ jobs:
 
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d' # v2.16.1
+        uses: 'step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176' # v2.17.0
         with:
           egress-policy: 'audit'
 
diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml
index b35447be..565015fc 100644
--- a/.github/workflows/dependency-review.yml
+++ b/.github/workflows/dependency-review.yml
@@ -11,7 +11,7 @@ jobs:
     runs-on: 'ubuntu-latest'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d' # v2.16.1
+        uses: 'step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176' # v2.17.0
         with:
           egress-policy: 'audit'
 
diff --git a/.github/workflows/docs.yml b/.github/workflows/docs.yml
index 7636bf96..4ed5de72 100644
--- a/.github/workflows/docs.yml
+++ b/.github/workflows/docs.yml
@@ -19,7 +19,7 @@ jobs:
     runs-on: 'ubuntu-latest'
     steps:
       - name: 'Harden the runner (Audit all outbound calls)'
-        uses: 'step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d' # v2.16.1
+        uses: 'step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176' # v2.17.0
         with:
           egress-policy: 'audit'
 
@@ -53,7 +53,7 @@ jobs:
       url: '${{ steps.deployment.outputs.page_url }}'
     steps:
       - name: 'Harden the runner (Audit all outbound calls)'
-        uses: 'step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d' # v2.16.1
+        uses: 'step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176' # v2.17.0
         with:
           egress-policy: 'audit'
 
diff --git a/.github/workflows/lf-build.yml b/.github/workflows/lf-build.yml
index 0ebf3798..104cb9e8 100644
--- a/.github/workflows/lf-build.yml
+++ b/.github/workflows/lf-build.yml
@@ -28,7 +28,7 @@ jobs:
     steps:
 
       - name: 'Harden the runner (Audit all outbound calls)'
-        uses: 'step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d' # v2.16.1
+        uses: 'step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176' # v2.17.0
         with:
           egress-policy: 'audit'
 
diff --git a/.github/workflows/lf-release.yml b/.github/workflows/lf-release.yml
index 26f5c7f9..efc92372 100644
--- a/.github/workflows/lf-release.yml
+++ b/.github/workflows/lf-release.yml
@@ -17,7 +17,7 @@ jobs:
     steps:
 
       - name: 'Harden the runner (Audit all outbound calls)'
-        uses: 'step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d' # v2.16.1
+        uses: 'step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176' # v2.17.0
         with:
           egress-policy: 'audit'
 
diff --git a/.github/workflows/pre-commit-autoupdate.yml b/.github/workflows/pre-commit-autoupdate.yml
index d8d696e6..2729d073 100644
--- a/.github/workflows/pre-commit-autoupdate.yml
+++ b/.github/workflows/pre-commit-autoupdate.yml
@@ -15,7 +15,7 @@ jobs:
       pull-requests: 'write'
     steps:
       - name: 'Harden the runner (Audit all outbound calls)'
-        uses: 'step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d' # v2.16.1
+        uses: 'step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176' # v2.17.0
         with:
           egress-policy: 'audit'
 
diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
index 6761e2df..a70563e3 100644
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@@ -18,7 +18,7 @@ jobs:
 
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d' # v2.16.1
+        uses: 'step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176' # v2.17.0
         with:
           egress-policy: 'audit'