diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index b5c0065..f03e476 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -40,7 +40,7 @@ jobs: steps: - name: "Harden Runner" - uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 + uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0 with: disable-sudo-and-containers: false # MAINTAINER CHOICE: Use "audit" first to discover needed endpoints,