diff --git a/.github/workflows/check.dependency-review.yml b/.github/workflows/check.dependency-review.yml
index daa272fd..6f2a9667 100644
--- a/.github/workflows/check.dependency-review.yml
+++ b/.github/workflows/check.dependency-review.yml
@@ -13,7 +13,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
         with:
           egress-policy: audit
       - name: 'Setup: Checkout'
diff --git a/.github/workflows/check.gradle-wrapper.yml b/.github/workflows/check.gradle-wrapper.yml
index 94aae6a1..d7a67b7a 100644
--- a/.github/workflows/check.gradle-wrapper.yml
+++ b/.github/workflows/check.gradle-wrapper.yml
@@ -13,7 +13,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
         with:
           egress-policy: audit
       - name: 'Setup: Checkout'
diff --git a/.github/workflows/check.hashes.yml b/.github/workflows/check.hashes.yml
index ff6356d6..9933e449 100644
--- a/.github/workflows/check.hashes.yml
+++ b/.github/workflows/check.hashes.yml
@@ -13,7 +13,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
         with:
           egress-policy: audit
       - name: 'Setup: Checkout'
diff --git a/.github/workflows/ci.build-test.yml b/.github/workflows/ci.build-test.yml
index 2dc8b5af..2b115292 100644
--- a/.github/workflows/ci.build-test.yml
+++ b/.github/workflows/ci.build-test.yml
@@ -26,7 +26,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Setup: Harden Runner'
-        uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
         with:
           egress-policy: audit
       - name: 'Setup: Checkout'
diff --git a/.github/workflows/ci.dependency-graph.yml b/.github/workflows/ci.dependency-graph.yml
index e3e482ec..c44bbd2b 100644
--- a/.github/workflows/ci.dependency-graph.yml
+++ b/.github/workflows/ci.dependency-graph.yml
@@ -15,7 +15,7 @@ jobs:
       contents: write # needed for graph write
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
         with:
           disable-sudo: true
           egress-policy: block
diff --git a/.github/workflows/ci.publish-package.yml b/.github/workflows/ci.publish-package.yml
index 82a76722..322b0f80 100644
--- a/.github/workflows/ci.publish-package.yml
+++ b/.github/workflows/ci.publish-package.yml
@@ -90,7 +90,7 @@ jobs:
       id-token: write
     steps:
       - name: 'Setup: Harden Runner'
-        uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
         with:
           egress-policy: audit
       - name: 'Setup: Checkout'
@@ -165,7 +165,7 @@ jobs:
     if: startsWith(github.ref, 'refs/tags/') || inputs.release
     steps:
       - name: 'Setup: Harden Runner'
-        uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
         with:
           egress-policy: audit
       - name: 'Artifact: Package'
@@ -196,7 +196,7 @@ jobs:
       packages: write
     steps:
       - name: 'Setup: Harden Runner'
-        uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
         with:
           egress-policy: audit
       - name: 'Setup: Checkout'
diff --git a/.github/workflows/deploy.site.yml b/.github/workflows/deploy.site.yml
index 91dbb7e8..00d36fb4 100644
--- a/.github/workflows/deploy.site.yml
+++ b/.github/workflows/deploy.site.yml
@@ -19,7 +19,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
         with:
           disable-sudo: true
           egress-policy: audit
@@ -57,7 +57,7 @@ jobs:
     needs: build
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
         with:
           disable-sudo: true
           egress-policy: block