From 129b0616616cb33a87cf3e72e11f56bfd75b74f6 Mon Sep 17 00:00:00 2001 From: "cid-workflow[bot]" <142626371+cid-workflow[bot]@users.noreply.github.com> Date: Wed, 12 Jun 2024 19:54:59 +0000 Subject: [PATCH] ci: update cid github actions workflow from 0.0.17 to 0.0.18 --- .github/workflows/cid-ossf.yml | 4 ++-- .github/workflows/cid-pullrequest.yml | 11 ++++++----- .github/workflows/cid.yml | 15 ++++++++------- 3 files changed, 16 insertions(+), 14 deletions(-) diff --git a/.github/workflows/cid-ossf.yml b/.github/workflows/cid-ossf.yml index 8a7fa93..a6fa30e 100644 --- a/.github/workflows/cid-ossf.yml +++ b/.github/workflows/cid-ossf.yml @@ -1,4 +1,4 @@ -# cid-workflow-version: 0.0.17 +# cid-workflow-version: 0.0.18 # This file is generated by the CID Workflow GitHub App. # DO NOT EDIT! @@ -36,7 +36,7 @@ jobs: contents: read # required in private repos steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true diff --git a/.github/workflows/cid-pullrequest.yml b/.github/workflows/cid-pullrequest.yml index 29621fc..1a55b8b 100644 --- a/.github/workflows/cid-pullrequest.yml +++ b/.github/workflows/cid-pullrequest.yml @@ -1,4 +1,4 @@ -# cid-workflow-version: 0.0.17 +# cid-workflow-version: 0.0.18 # This file is generated by the CID Workflow GitHub App. # DO NOT EDIT! @@ -79,6 +79,7 @@ env: EGRESS_POLICY_ALLOWED_ENDPOINTS_BUILD: "" EGRESS_POLICY_ALLOWED_ENDPOINTS_TEST: "" EGRESS_POLICY_ALLOWED_ENDPOINTS_SCAN: >- + api.sonarcloud.io:443 scanner.sonarcloud.io:443 semgrep.dev:443 sonarcloud.io:443 @@ -98,7 +99,7 @@ jobs: if: ${{ github.event.inputs.loglevel == 'debug' }} steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true @@ -131,7 +132,7 @@ jobs: timeout-minutes: 30 steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true @@ -166,7 +167,7 @@ jobs: timeout-minutes: 30 steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true @@ -203,7 +204,7 @@ jobs: timeout-minutes: 30 steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true diff --git a/.github/workflows/cid.yml b/.github/workflows/cid.yml index e21c340..f491e99 100644 --- a/.github/workflows/cid.yml +++ b/.github/workflows/cid.yml @@ -1,4 +1,4 @@ -# cid-workflow-version: 0.0.17 +# cid-workflow-version: 0.0.18 # This file is generated by the CID Workflow GitHub App. # DO NOT EDIT! @@ -81,6 +81,7 @@ env: EGRESS_POLICY_ALLOWED_ENDPOINTS_BUILD: "" EGRESS_POLICY_ALLOWED_ENDPOINTS_TEST: "" EGRESS_POLICY_ALLOWED_ENDPOINTS_SCAN: >- + api.sonarcloud.io:443 scanner.sonarcloud.io:443 semgrep.dev:443 sonarcloud.io:443 @@ -100,7 +101,7 @@ jobs: if: ${{ github.event.inputs.loglevel == 'debug' }} steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true @@ -133,7 +134,7 @@ jobs: timeout-minutes: 30 steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true @@ -168,7 +169,7 @@ jobs: timeout-minutes: 30 steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true @@ -205,7 +206,7 @@ jobs: timeout-minutes: 30 steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true @@ -252,7 +253,7 @@ jobs: timeout-minutes: 30 steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true @@ -299,7 +300,7 @@ jobs: timeout-minutes: 30 steps: - name: Harden Runner - uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0 + uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1 with: disable-telemetry: true disable-sudo: true