diff --git a/.github/workflows/Build and test.yml b/.github/workflows/Build and test.yml index e7f003ce9..d14cdae50 100644 --- a/.github/workflows/Build and test.yml +++ b/.github/workflows/Build and test.yml @@ -15,7 +15,7 @@ jobs: runs-on: blacksmith-4vcpu-ubuntu-2204 steps: - name: Harden Runner - uses: step-security/harden-runner@c6295a65d1254861815972266d5933fd6e532bdf # v2.11.1 + uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 with: egress-policy: audit @@ -51,7 +51,7 @@ jobs: node-version: [16.x, 18.x, 20.x, 22.x, 23.x, latest] steps: - name: Harden Runner - uses: step-security/harden-runner@c6295a65d1254861815972266d5933fd6e532bdf # v2.11.1 + uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 with: egress-policy: audit @@ -82,7 +82,7 @@ jobs: runs-on: blacksmith-4vcpu-ubuntu-2204 steps: - name: Harden Runner - uses: step-security/harden-runner@c6295a65d1254861815972266d5933fd6e532bdf # v2.11.1 + uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 with: egress-policy: audit diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index b1ba982d1..a97ac1fba 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -28,7 +28,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@617de1d11dea286f7a53941812f4667f646e72da + uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 with: egress-policy: audit diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 2260aac7d..978ec406c 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -17,7 +17,7 @@ jobs: runs-on: blacksmith-4vcpu-ubuntu-2204 steps: - name: Harden Runner - uses: step-security/harden-runner@c6295a65d1254861815972266d5933fd6e532bdf # v2.11.1 + uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 with: egress-policy: audit