diff --git a/.github/workflows/codecov.yml b/.github/workflows/codecov.yml index ed20320..4813c06 100644 --- a/.github/workflows/codecov.yml +++ b/.github/workflows/codecov.yml @@ -10,7 +10,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49 + uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 with: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index d8be377..947673f 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -41,7 +41,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49 + uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 with: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs diff --git a/.github/workflows/go.yml b/.github/workflows/go.yml index b2da9b3..95c5d15 100644 --- a/.github/workflows/go.yml +++ b/.github/workflows/go.yml @@ -12,7 +12,7 @@ jobs: runs-on: ${{ matrix.os }} steps: - name: Harden Runner - uses: step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49 + uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 with: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml index 9387443..2ffa751 100644 --- a/.github/workflows/golangci-lint.yml +++ b/.github/workflows/golangci-lint.yml @@ -12,7 +12,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49 + uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 with: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs