diff --git a/.github/workflows/continuous-integration.yml b/.github/workflows/continuous-integration.yml index 4bf223f4..bd8681c1 100644 --- a/.github/workflows/continuous-integration.yml +++ b/.github/workflows/continuous-integration.yml @@ -31,7 +31,7 @@ jobs: fail-fast: false runs-on: ${{ matrix.os }} steps: - - uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 + - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 if: ${{ matrix.os == 'ubuntu-latest' }} with: disable-sudo: true @@ -59,7 +59,7 @@ jobs: name: Code Lint runs-on: ubuntu-latest steps: - - uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 + - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 with: disable-sudo: true egress-policy: block @@ -89,7 +89,7 @@ jobs: runs-on: ubuntu-latest if: ${{ github.event.pull_request }} steps: - - uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 + - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 with: disable-sudo: true egress-policy: block @@ -125,7 +125,7 @@ jobs: name: Lockfile Lint runs-on: ubuntu-latest steps: - - uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 + - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 with: disable-sudo: true egress-policy: block diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml index b60c3d24..dd988f97 100644 --- a/.github/workflows/scorecards.yml +++ b/.github/workflows/scorecards.yml @@ -32,7 +32,7 @@ jobs: id-token: write steps: - - uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 + - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 if: ${{ matrix.os == 'ubuntu-latest' }} with: disable-sudo: true