From 63f9ff58e6755972d8855b116f2537e9954d7c8d Mon Sep 17 00:00:00 2001 From: Raphael Boidol Date: Mon, 19 Feb 2024 18:44:09 +0100 Subject: [PATCH] chore: update "harden-runner" to v2 --- .github/workflows/latest-npm.yml | 6 +++--- .github/workflows/lint.yml | 8 ++++---- .github/workflows/rebase.yml | 2 +- .github/workflows/release.yml | 2 +- .github/workflows/require-allow-edits.yml | 2 +- .github/workflows/shellcheck.yml | 4 ++-- .github/workflows/tests.yml | 2 +- .github/workflows/toc.yml | 2 +- 8 files changed, 14 insertions(+), 14 deletions(-) diff --git a/.github/workflows/latest-npm.yml b/.github/workflows/latest-npm.yml index dd1e72c09dc..261d51825c3 100644 --- a/.github/workflows/latest-npm.yml +++ b/.github/workflows/latest-npm.yml @@ -9,7 +9,7 @@ jobs: latest: ${{ steps.set-matrix.outputs.requireds }} steps: - name: Harden Runner - uses: step-security/harden-runner@v1 + uses: step-security/harden-runner@v2 with: allowed-endpoints: iojs.org:443 @@ -46,7 +46,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@v1 + uses: step-security/harden-runner@v2 with: allowed-endpoints: github.com:443 @@ -75,7 +75,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@v1 + uses: step-security/harden-runner@v2 with: egress-policy: block - run: 'echo tests completed' diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index fa2f99d0d01..b0a61f6d211 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -8,7 +8,7 @@ jobs: contents: read runs-on: ubuntu-latest steps: - - uses: step-security/harden-runner@v1 + - uses: step-security/harden-runner@v2 with: allowed-endpoints: github.com:443 @@ -27,7 +27,7 @@ jobs: contents: read runs-on: ubuntu-latest steps: - - uses: step-security/harden-runner@v1 + - uses: step-security/harden-runner@v2 with: allowed-endpoints: ghcr.io:443 @@ -48,7 +48,7 @@ jobs: contents: read runs-on: ubuntu-latest steps: - - uses: step-security/harden-runner@v1 + - uses: step-security/harden-runner@v2 with: allowed-endpoints: github.com:443 @@ -67,7 +67,7 @@ jobs: contents: read runs-on: ubuntu-latest steps: - - uses: step-security/harden-runner@v1 + - uses: step-security/harden-runner@v2 with: allowed-endpoints: github.com:443 diff --git a/.github/workflows/rebase.yml b/.github/workflows/rebase.yml index 023f04b3ecf..e7724aed0d7 100644 --- a/.github/workflows/rebase.yml +++ b/.github/workflows/rebase.yml @@ -12,7 +12,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@v1 + uses: step-security/harden-runner@v2 with: allowed-endpoints: api.github.com:443 diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 4458bb95620..41b20690f4a 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -9,7 +9,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@v1 + uses: step-security/harden-runner@v2 with: allowed-endpoints: github.com:443 diff --git a/.github/workflows/require-allow-edits.yml b/.github/workflows/require-allow-edits.yml index 427eecbc76a..efb6c495ad5 100644 --- a/.github/workflows/require-allow-edits.yml +++ b/.github/workflows/require-allow-edits.yml @@ -12,7 +12,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@v1 + uses: step-security/harden-runner@v2 with: allowed-endpoints: api.github.com:443 diff --git a/.github/workflows/shellcheck.yml b/.github/workflows/shellcheck.yml index 7ea4fa667f6..64eaadac835 100644 --- a/.github/workflows/shellcheck.yml +++ b/.github/workflows/shellcheck.yml @@ -27,7 +27,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@v1 + uses: step-security/harden-runner@v2 with: allowed-endpoints: ghcr.io:443 @@ -52,7 +52,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@v1 + uses: step-security/harden-runner@v2 with: egress-policy: block - run: 'echo tests completed' diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index 8f1b31ff570..07b43564935 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -26,7 +26,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@v1 + uses: step-security/harden-runner@v2 with: allowed-endpoints: github.com:443 diff --git a/.github/workflows/toc.yml b/.github/workflows/toc.yml index 2d83d502e1e..94c8f0dc4ae 100644 --- a/.github/workflows/toc.yml +++ b/.github/workflows/toc.yml @@ -12,7 +12,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@v1 + uses: step-security/harden-runner@v2 with: allowed-endpoints: github.com:443