Skip to content

Commit 5f1df17

Browse files
[StepSecurity] Apply security best practices (#1358)
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io> Co-authored-by: stepsecurity-app[bot] <188008098+stepsecurity-app[bot]@users.noreply.github.com>
1 parent 62f7b10 commit 5f1df17

1 file changed

Lines changed: 5 additions & 0 deletions

File tree

.github/workflows/fuzz.yaml

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -40,6 +40,11 @@ jobs:
4040
outputs:
4141
targets: ${{ steps.find.outputs.targets }}
4242
steps:
43+
- name: Harden the runner (Audit all outbound calls)
44+
uses: step-security/harden-runner@e3f713f2d8f53843e71c69a996d56f51aa9adfb9 # v2.14.1
45+
with:
46+
egress-policy: audit
47+
4348
- name: Checkout code
4449
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
4550
with:

0 commit comments

Comments
 (0)