diff --git a/.github/workflows/auto-approve-pr.yaml b/.github/workflows/auto-approve-pr.yaml index 0d4cd6a..33e76d3 100644 --- a/.github/workflows/auto-approve-pr.yaml +++ b/.github/workflows/auto-approve-pr.yaml @@ -14,7 +14,7 @@ jobs: if: github.event.pull_request.user.login == ${{ github.repository_owner }} steps: - name: Harden Runner - uses: step-security/harden-runner@4a1e83c9ef6b0e39b16f17b2734e08cdfbeea46c # v2.5.0 + uses: step-security/harden-runner@398bb08048482c421b1da00a58a1b472a306eb85 # v2.5.0 with: egress-policy: audit diff --git a/.github/workflows/auto-update-pre-commit.yaml b/.github/workflows/auto-update-pre-commit.yaml index 3e65d91..7ddcfae 100644 --- a/.github/workflows/auto-update-pre-commit.yaml +++ b/.github/workflows/auto-update-pre-commit.yaml @@ -22,7 +22,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@4a1e83c9ef6b0e39b16f17b2734e08cdfbeea46c # v2.5.0 + uses: step-security/harden-runner@398bb08048482c421b1da00a58a1b472a306eb85 # v2.5.0 with: egress-policy: audit diff --git a/.github/workflows/codeql.yaml b/.github/workflows/codeql.yaml index 857c93b..d0ff1b2 100644 --- a/.github/workflows/codeql.yaml +++ b/.github/workflows/codeql.yaml @@ -41,7 +41,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@4a1e83c9ef6b0e39b16f17b2734e08cdfbeea46c # v2.5.0 + uses: step-security/harden-runner@398bb08048482c421b1da00a58a1b472a306eb85 # v2.5.0 with: egress-policy: audit diff --git a/.github/workflows/lint.yaml b/.github/workflows/lint.yaml index d2dd6c1..568e887 100644 --- a/.github/workflows/lint.yaml +++ b/.github/workflows/lint.yaml @@ -20,7 +20,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@4a1e83c9ef6b0e39b16f17b2734e08cdfbeea46c # v2.5.0 + uses: step-security/harden-runner@398bb08048482c421b1da00a58a1b472a306eb85 # v2.5.0 with: egress-policy: audit