From c3aaa984633bde3f558833d524c6fe27e8ba87d1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 4 Jul 2023 15:22:56 -0400
Subject: [PATCH] Bump step-security/harden-runner from 2.4.0 to 2.4.1 (#4551)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps
[step-security/harden-runner](https://github.com/step-security/harden-runner)
from 2.4.0 to 2.4.1.
Release notes
Sourced from step-security/harden-runner's
releases.
v2.4.1
What's Changed
Release v2.4.1 by @varunsh-coder
and @Devils-Knight
in step-security/harden-runner#309
This release
- Shows a preview of the network events in the job summary
markdown
- Uses a fallback DNS service from Cloudflare in addition to Google
DNS to improve reliability
Full Changelog: https://github.com/step-security/harden-runner/compare/v2...v2.4.1
Commits
55d479f
Release v2.4.1 (#309)215c5ca
Merge pull request #307
from step-security/dependabot/github_actions/github/c...95a625a
Merge pull request #306
from step-security/dependabot/github_actions/actions/...7d83e8e
Bump github/codeql-action from 2.3.3 to 2.13.436ccae2
Bump actions/checkout from 3.5.2 to 3.5.3beefd8c
Merge pull request #295
from step-security/dependabot/github_actions/github/c...bb523fd
Merge pull request #301
from step-security/dependabot/github_actions/codecov/...760976e
Bump codecov/codecov-action from 3.1.2 to 3.1.4f702486
Merge pull request #300
from step-security/ak-codewise-dogfooding1f715fe
using ai-codewise int for dogfooding- Additional commits viewable in compare
view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
.github/workflows/ci-all-in-one-build.yml | 2 +-
.github/workflows/ci-build-binaries.yml | 2 +-
.github/workflows/ci-cassandra.yml | 2 +-
.github/workflows/ci-crossdock.yml | 2 +-
.github/workflows/ci-docker-build.yml | 2 +-
.github/workflows/ci-elasticsearch.yml | 2 +-
.github/workflows/ci-grpc-badger.yml | 2 +-
.github/workflows/ci-hotrod.yml | 2 +-
.github/workflows/ci-kafka.yml | 2 +-
.github/workflows/ci-opensearch.yml | 2 +-
.github/workflows/ci-protogen-tests.yml | 2 +-
.github/workflows/ci-release.yml | 2 +-
.github/workflows/ci-unit-tests-go-tip.yml | 2 +-
.github/workflows/ci-unit-tests.yml | 2 +-
.github/workflows/codeql.yml | 2 +-
.github/workflows/fossa.yml | 2 +-
16 files changed, 16 insertions(+), 16 deletions(-)
diff --git a/.github/workflows/ci-all-in-one-build.yml b/.github/workflows/ci-all-in-one-build.yml
index 70ad9e413f5..7d56f1ccc72 100644
--- a/.github/workflows/ci-all-in-one-build.yml
+++ b/.github/workflows/ci-all-in-one-build.yml
@@ -16,7 +16,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Harden Runner
- uses: step-security/harden-runner@128a63446a954579617e875aaab7d2978154e969
+ uses: step-security/harden-runner@55d479fb1c5bcad5a4f9099a5d9f37c8857b2845
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
diff --git a/.github/workflows/ci-build-binaries.yml b/.github/workflows/ci-build-binaries.yml
index 02b3c95c36a..2d16d5dbb8d 100644
--- a/.github/workflows/ci-build-binaries.yml
+++ b/.github/workflows/ci-build-binaries.yml
@@ -34,7 +34,7 @@ jobs:
name: build binaries for ${{ matrix.platform.name }}
steps:
- name: Harden Runner
- uses: step-security/harden-runner@128a63446a954579617e875aaab7d2978154e969
+ uses: step-security/harden-runner@55d479fb1c5bcad5a4f9099a5d9f37c8857b2845
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
diff --git a/.github/workflows/ci-cassandra.yml b/.github/workflows/ci-cassandra.yml
index b29198adbba..d6994bef1f0 100644
--- a/.github/workflows/ci-cassandra.yml
+++ b/.github/workflows/ci-cassandra.yml
@@ -28,7 +28,7 @@ jobs:
name: ${{ matrix.version.distribution }} ${{ matrix.version.major }}
steps:
- name: Harden Runner
- uses: step-security/harden-runner@128a63446a954579617e875aaab7d2978154e969
+ uses: step-security/harden-runner@55d479fb1c5bcad5a4f9099a5d9f37c8857b2845
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
diff --git a/.github/workflows/ci-crossdock.yml b/.github/workflows/ci-crossdock.yml
index 26477ec040d..6296dd06e55 100644
--- a/.github/workflows/ci-crossdock.yml
+++ b/.github/workflows/ci-crossdock.yml
@@ -17,7 +17,7 @@ jobs:
steps:
- name: Harden Runner
- uses: step-security/harden-runner@128a63446a954579617e875aaab7d2978154e969
+ uses: step-security/harden-runner@55d479fb1c5bcad5a4f9099a5d9f37c8857b2845
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
diff --git a/.github/workflows/ci-docker-build.yml b/.github/workflows/ci-docker-build.yml
index 0348f5baaaa..7cde0a310c1 100644
--- a/.github/workflows/ci-docker-build.yml
+++ b/.github/workflows/ci-docker-build.yml
@@ -17,7 +17,7 @@ jobs:
steps:
- name: Harden Runner
- uses: step-security/harden-runner@128a63446a954579617e875aaab7d2978154e969
+ uses: step-security/harden-runner@55d479fb1c5bcad5a4f9099a5d9f37c8857b2845
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
diff --git a/.github/workflows/ci-elasticsearch.yml b/.github/workflows/ci-elasticsearch.yml
index 765a10b8ff3..c7724a287c1 100644
--- a/.github/workflows/ci-elasticsearch.yml
+++ b/.github/workflows/ci-elasticsearch.yml
@@ -29,7 +29,7 @@ jobs:
name: ${{ matrix.version.distribution }} ${{ matrix.version.major }}
steps:
- name: Harden Runner
- uses: step-security/harden-runner@128a63446a954579617e875aaab7d2978154e969
+ uses: step-security/harden-runner@55d479fb1c5bcad5a4f9099a5d9f37c8857b2845
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
diff --git a/.github/workflows/ci-grpc-badger.yml b/.github/workflows/ci-grpc-badger.yml
index 60dd1697abd..61e9f5f7a94 100644
--- a/.github/workflows/ci-grpc-badger.yml
+++ b/.github/workflows/ci-grpc-badger.yml
@@ -16,7 +16,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Harden Runner
- uses: step-security/harden-runner@128a63446a954579617e875aaab7d2978154e969
+ uses: step-security/harden-runner@55d479fb1c5bcad5a4f9099a5d9f37c8857b2845
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
diff --git a/.github/workflows/ci-hotrod.yml b/.github/workflows/ci-hotrod.yml
index 25be9c5787b..7d6257d822a 100644
--- a/.github/workflows/ci-hotrod.yml
+++ b/.github/workflows/ci-hotrod.yml
@@ -16,7 +16,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Harden Runner
- uses: step-security/harden-runner@128a63446a954579617e875aaab7d2978154e969
+ uses: step-security/harden-runner@55d479fb1c5bcad5a4f9099a5d9f37c8857b2845
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
diff --git a/.github/workflows/ci-kafka.yml b/.github/workflows/ci-kafka.yml
index 0d69c8b9857..8b0f7c3df9e 100644
--- a/.github/workflows/ci-kafka.yml
+++ b/.github/workflows/ci-kafka.yml
@@ -16,7 +16,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Harden Runner
- uses: step-security/harden-runner@128a63446a954579617e875aaab7d2978154e969
+ uses: step-security/harden-runner@55d479fb1c5bcad5a4f9099a5d9f37c8857b2845
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
diff --git a/.github/workflows/ci-opensearch.yml b/.github/workflows/ci-opensearch.yml
index 840b6b19e3e..4cc695e1814 100644
--- a/.github/workflows/ci-opensearch.yml
+++ b/.github/workflows/ci-opensearch.yml
@@ -26,7 +26,7 @@ jobs:
name: ${{ matrix.version.distribution }} ${{ matrix.version.major }}
steps:
- name: Harden Runner
- uses: step-security/harden-runner@128a63446a954579617e875aaab7d2978154e969
+ uses: step-security/harden-runner@55d479fb1c5bcad5a4f9099a5d9f37c8857b2845
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
diff --git a/.github/workflows/ci-protogen-tests.yml b/.github/workflows/ci-protogen-tests.yml
index ab04045802c..91da2e26ff9 100644
--- a/.github/workflows/ci-protogen-tests.yml
+++ b/.github/workflows/ci-protogen-tests.yml
@@ -16,7 +16,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Harden Runner
- uses: step-security/harden-runner@128a63446a954579617e875aaab7d2978154e969
+ uses: step-security/harden-runner@55d479fb1c5bcad5a4f9099a5d9f37c8857b2845
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
diff --git a/.github/workflows/ci-release.yml b/.github/workflows/ci-release.yml
index fff3d6d97a3..12a359ba789 100644
--- a/.github/workflows/ci-release.yml
+++ b/.github/workflows/ci-release.yml
@@ -17,7 +17,7 @@ jobs:
steps:
- name: Harden Runner
- uses: step-security/harden-runner@128a63446a954579617e875aaab7d2978154e969
+ uses: step-security/harden-runner@55d479fb1c5bcad5a4f9099a5d9f37c8857b2845
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
diff --git a/.github/workflows/ci-unit-tests-go-tip.yml b/.github/workflows/ci-unit-tests-go-tip.yml
index de18b6933e7..1013539986f 100644
--- a/.github/workflows/ci-unit-tests-go-tip.yml
+++ b/.github/workflows/ci-unit-tests-go-tip.yml
@@ -13,7 +13,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Harden Runner
- uses: step-security/harden-runner@128a63446a954579617e875aaab7d2978154e969
+ uses: step-security/harden-runner@55d479fb1c5bcad5a4f9099a5d9f37c8857b2845
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
diff --git a/.github/workflows/ci-unit-tests.yml b/.github/workflows/ci-unit-tests.yml
index af43ce53663..e66b1dcf3cd 100644
--- a/.github/workflows/ci-unit-tests.yml
+++ b/.github/workflows/ci-unit-tests.yml
@@ -22,7 +22,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Harden Runner
- uses: step-security/harden-runner@128a63446a954579617e875aaab7d2978154e969
+ uses: step-security/harden-runner@55d479fb1c5bcad5a4f9099a5d9f37c8857b2845
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 331c79d7a58..d197ff4889b 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -31,7 +31,7 @@ jobs:
steps:
- name: Harden Runner
- uses: step-security/harden-runner@128a63446a954579617e875aaab7d2978154e969
+ uses: step-security/harden-runner@55d479fb1c5bcad5a4f9099a5d9f37c8857b2845
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
diff --git a/.github/workflows/fossa.yml b/.github/workflows/fossa.yml
index a36cc7e9dfe..e78ab15e89e 100644
--- a/.github/workflows/fossa.yml
+++ b/.github/workflows/fossa.yml
@@ -17,7 +17,7 @@ jobs:
steps:
- name: Harden Runner
- uses: step-security/harden-runner@128a63446a954579617e875aaab7d2978154e969
+ uses: step-security/harden-runner@55d479fb1c5bcad5a4f9099a5d9f37c8857b2845
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs