From 45fb155dbf7e88574eb6f39357c9693b51149c64 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Thu, 23 Jan 2025 05:59:39 +0000
Subject: [PATCH] chore(deps-dev): update step-security/harden-runner action to
v2.10.4
---
.github/workflows/main.yaml | 2 +-
.github/workflows/pr-actions.yaml | 2 +-
.github/workflows/pr-build.yaml | 12 ++++++------
.github/workflows/pr-goreleaser.yaml | 2 +-
.github/workflows/pr-label.yaml | 2 +-
.github/workflows/pr-trivy.yaml | 2 +-
.github/workflows/rebase.yaml | 2 +-
.github/workflows/release.yaml | 4 ++--
.github/workflows/report-on-vulnerabilities.yaml | 4 ++--
.github/workflows/scan.yaml | 2 +-
.github/workflows/scorecard.yaml | 2 +-
11 files changed, 18 insertions(+), 18 deletions(-)
diff --git a/.github/workflows/main.yaml b/.github/workflows/main.yaml
index 183fcd5..a1d0f67 100644
--- a/.github/workflows/main.yaml
+++ b/.github/workflows/main.yaml
@@ -12,7 +12,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
- name: Checkout
diff --git a/.github/workflows/pr-actions.yaml b/.github/workflows/pr-actions.yaml
index 32591fa..ce09505 100644
--- a/.github/workflows/pr-actions.yaml
+++ b/.github/workflows/pr-actions.yaml
@@ -12,7 +12,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
diff --git a/.github/workflows/pr-build.yaml b/.github/workflows/pr-build.yaml
index dc33b01..7efdcfa 100644
--- a/.github/workflows/pr-build.yaml
+++ b/.github/workflows/pr-build.yaml
@@ -14,7 +14,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
- name: Checkout
@@ -48,7 +48,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
- name: Checkout
@@ -82,7 +82,7 @@ jobs:
- "1.30"
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
- name: Checkout
@@ -100,7 +100,7 @@ jobs:
profiles: ${{ steps.profiles.outputs.matrix }}
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
- name: Checkout
@@ -145,7 +145,7 @@ jobs:
profile: ${{ fromJson(needs.build.outputs.profiles) }}
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
- name: Checkout
@@ -188,7 +188,7 @@ jobs:
- lint-chart
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
- name: Checkout
diff --git a/.github/workflows/pr-goreleaser.yaml b/.github/workflows/pr-goreleaser.yaml
index 5162525..735d140 100644
--- a/.github/workflows/pr-goreleaser.yaml
+++ b/.github/workflows/pr-goreleaser.yaml
@@ -12,7 +12,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
- name: Checkout
diff --git a/.github/workflows/pr-label.yaml b/.github/workflows/pr-label.yaml
index 8efe5bb..c20afda 100644
--- a/.github/workflows/pr-label.yaml
+++ b/.github/workflows/pr-label.yaml
@@ -13,7 +13,7 @@ jobs:
pull-requests: write
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
- name: size-label
diff --git a/.github/workflows/pr-trivy.yaml b/.github/workflows/pr-trivy.yaml
index 11066ac..4c6aa1b 100644
--- a/.github/workflows/pr-trivy.yaml
+++ b/.github/workflows/pr-trivy.yaml
@@ -8,7 +8,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
diff --git a/.github/workflows/rebase.yaml b/.github/workflows/rebase.yaml
index 99e1481..876747c 100644
--- a/.github/workflows/rebase.yaml
+++ b/.github/workflows/rebase.yaml
@@ -16,7 +16,7 @@ jobs:
contents: write # needed to force push
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
index 1d362dc..9b2c120 100644
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@@ -15,7 +15,7 @@ jobs:
packages: write # needed for ghcr access
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
- name: Checkout code
@@ -52,7 +52,7 @@ jobs:
id-token: write # Needed for keyless signing
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
diff --git a/.github/workflows/report-on-vulnerabilities.yaml b/.github/workflows/report-on-vulnerabilities.yaml
index 61ca470..20195f3 100644
--- a/.github/workflows/report-on-vulnerabilities.yaml
+++ b/.github/workflows/report-on-vulnerabilities.yaml
@@ -14,7 +14,7 @@ jobs:
results: ${{ steps.parse-results.outputs.results }}
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
@@ -58,7 +58,7 @@ jobs:
issues: write
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
diff --git a/.github/workflows/scan.yaml b/.github/workflows/scan.yaml
index 45c5162..a980156 100644
--- a/.github/workflows/scan.yaml
+++ b/.github/workflows/scan.yaml
@@ -18,7 +18,7 @@ jobs:
security-events: write # for codeQL to write security events
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
- name: Checkout repository
diff --git a/.github/workflows/scorecard.yaml b/.github/workflows/scorecard.yaml
index f31a847..b0c1068 100644
--- a/.github/workflows/scorecard.yaml
+++ b/.github/workflows/scorecard.yaml
@@ -16,7 +16,7 @@ jobs:
id-token: write
steps:
- name: Harden Runner
- uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
+ uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit