diff --git a/.github/workflows/cid-ossf.yml b/.github/workflows/cid-ossf.yml index 8a7fa93..a6fa30e 100644 --- a/.github/workflows/cid-ossf.yml +++ b/.github/workflows/cid-ossf.yml @@ -1,4 +1,4 @@ -# cid-workflow-version: 0.0.17 +# cid-workflow-version: 0.0.18 # This file is generated by the CID Workflow GitHub App. # DO NOT EDIT! @@ -36,7 +36,7 @@ jobs: contents: read # required in private repos steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true diff --git a/.github/workflows/cid-pullrequest.yml b/.github/workflows/cid-pullrequest.yml index 29621fc..1a55b8b 100644 --- a/.github/workflows/cid-pullrequest.yml +++ b/.github/workflows/cid-pullrequest.yml @@ -1,4 +1,4 @@ -# cid-workflow-version: 0.0.17 +# cid-workflow-version: 0.0.18 # This file is generated by the CID Workflow GitHub App. # DO NOT EDIT! @@ -79,6 +79,7 @@ env: EGRESS_POLICY_ALLOWED_ENDPOINTS_BUILD: "" EGRESS_POLICY_ALLOWED_ENDPOINTS_TEST: "" EGRESS_POLICY_ALLOWED_ENDPOINTS_SCAN: >- + api.sonarcloud.io:443 scanner.sonarcloud.io:443 semgrep.dev:443 sonarcloud.io:443 @@ -98,7 +99,7 @@ jobs: if: ${{ github.event.inputs.loglevel == 'debug' }} steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true @@ -131,7 +132,7 @@ jobs: timeout-minutes: 30 steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true @@ -166,7 +167,7 @@ jobs: timeout-minutes: 30 steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true @@ -203,7 +204,7 @@ jobs: timeout-minutes: 30 steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true diff --git a/.github/workflows/cid.yml b/.github/workflows/cid.yml index e21c340..f491e99 100644 --- a/.github/workflows/cid.yml +++ b/.github/workflows/cid.yml @@ -1,4 +1,4 @@ -# cid-workflow-version: 0.0.17 +# cid-workflow-version: 0.0.18 # This file is generated by the CID Workflow GitHub App. # DO NOT EDIT! @@ -81,6 +81,7 @@ env: EGRESS_POLICY_ALLOWED_ENDPOINTS_BUILD: "" EGRESS_POLICY_ALLOWED_ENDPOINTS_TEST: "" EGRESS_POLICY_ALLOWED_ENDPOINTS_SCAN: >- + api.sonarcloud.io:443 scanner.sonarcloud.io:443 semgrep.dev:443 sonarcloud.io:443 @@ -100,7 +101,7 @@ jobs: if: ${{ github.event.inputs.loglevel == 'debug' }} steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true @@ -133,7 +134,7 @@ jobs: timeout-minutes: 30 steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true @@ -168,7 +169,7 @@ jobs: timeout-minutes: 30 steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true @@ -205,7 +206,7 @@ jobs: timeout-minutes: 30 steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true @@ -252,7 +253,7 @@ jobs: timeout-minutes: 30 steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true @@ -299,7 +300,7 @@ jobs: timeout-minutes: 30 steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true