Skip to content

Bump step-security/harden-runner from 2.8.1 to 2.10.1 #1119

Bump step-security/harden-runner from 2.8.1 to 2.10.1

Bump step-security/harden-runner from 2.8.1 to 2.10.1 #1119

Workflow file for this run

name: clang-scan
on:
push:
branches: [ '**' ]
pull_request:
branches: [ '**' ]
permissions:
contents: read
jobs:
build:
runs-on: ci-clang-scan
if: ${{ github.repository != 'intel/pcm' }}
steps:
- name: Harden Runner
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
with:
egress-policy: audit
- uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
with:
submodules: recursive
- name: Configure CMake
run: |
cmake --version
rm -rf ${{ github.workspace }}/build
scan-build cmake -B ${{ github.workspace }}/build
- name: Scan build
run: |
cd ${{ github.workspace }}/build
scan-build --exclude src/simdjson --status-bugs make -j