Skip to content

Commit 7efceb4

Browse files
ci(deps): bump the github-actions group with 3 updates (#1262)
Bumps the github-actions group with 3 updates: [step-security/harden-runner](https://github.com/step-security/harden-runner), [actions/setup-node](https://github.com/actions/setup-node) and [philips-software/amp-devcontainer](https://github.com/philips-software/amp-devcontainer). Updates `step-security/harden-runner` from 2.18.0 to 2.19.0 - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](step-security/harden-runner@6c3c2f2...8d3c67d) Updates `actions/setup-node` from 6.3.0 to 6.4.0 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](actions/setup-node@53b8394...48b55a0) Updates `philips-software/amp-devcontainer` from 6.10.1 to 6.10.2 - [Release notes](https://github.com/philips-software/amp-devcontainer/releases) - [Changelog](https://github.com/philips-software/amp-devcontainer/blob/main/CHANGELOG.md) - [Commits](76fd2f5...94bc4a0) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-version: 2.19.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: actions/setup-node dependency-version: 6.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: philips-software/amp-devcontainer dependency-version: 6.10.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
1 parent 7f6eaac commit 7efceb4

21 files changed

Lines changed: 29 additions & 29 deletions

.github/workflows/continuous-integration.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -47,7 +47,7 @@ jobs:
4747
needs: build-push-test
4848
if: ${{ !cancelled() }}
4949
steps:
50-
- uses: step-security/harden-runner@6c3c2f2c1c457b00c10c4848d6f5491db3b629df # v2.18.0
50+
- uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0
5151
with:
5252
disable-sudo: true
5353
egress-policy: audit

.github/workflows/image-cleanup.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,7 @@ jobs:
1515
permissions:
1616
packages: write # is needed by dataaxiom/ghcr-cleanup-action to delete untagged and orphaned images
1717
steps:
18-
- uses: step-security/harden-runner@6c3c2f2c1c457b00c10c4848d6f5491db3b629df # v2.18.0
18+
- uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0
1919
with:
2020
disable-sudo: true
2121
allowed-endpoints: >

.github/workflows/issue-cleanup.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,7 @@ jobs:
1515
issues: write # is needed by actions/stale to close/comment on issues
1616
pull-requests: write # is needed by actions/stale to close/comment on PRs
1717
steps:
18-
- uses: step-security/harden-runner@6c3c2f2c1c457b00c10c4848d6f5491db3b629df # v2.18.0
18+
- uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0
1919
with:
2020
disable-sudo-and-containers: true
2121
egress-policy: audit

.github/workflows/issue-creation-tool-versions.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -16,7 +16,7 @@ jobs:
1616
contents: read # is needed to checkout the repository
1717
issues: write # is needed by gh cli to create/close/pin/unpin issues
1818
steps:
19-
- uses: step-security/harden-runner@6c3c2f2c1c457b00c10c4848d6f5491db3b629df # v2.18.0
19+
- uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0
2020
with:
2121
disable-sudo-and-containers: true
2222
egress-policy: audit

.github/workflows/linting-formatting.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -26,7 +26,7 @@ jobs:
2626
pull-requests: write # is needed by oxsecurity/megalinter and reviewdog/action-suggester to post PR comments
2727
security-events: write # is needed by oxsecurity/megalinter for uploading sarif files
2828
steps:
29-
- uses: step-security/harden-runner@6c3c2f2c1c457b00c10c4848d6f5491db3b629df # v2.18.0
29+
- uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0
3030
with:
3131
disable-sudo: true
3232
egress-policy: audit

.github/workflows/ossf-scorecard.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -20,7 +20,7 @@ jobs:
2020
security-events: write # is needed by github/codeql-action/upload-sarif to upload sarif files
2121
id-token: write # is needed by ossf/scorecard-action to authenticate with OIDC
2222
steps:
23-
- uses: step-security/harden-runner@6c3c2f2c1c457b00c10c4848d6f5491db3b629df # v2.18.0
23+
- uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0
2424
with:
2525
disable-sudo: true
2626
egress-policy: audit

.github/workflows/pr-conventional-title.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -17,7 +17,7 @@ jobs:
1717
permissions:
1818
pull-requests: write # is needed by marocchino/sticky-pull-request-comment to post comments on PRs
1919
steps:
20-
- uses: step-security/harden-runner@6c3c2f2c1c457b00c10c4848d6f5491db3b629df # v2.18.0
20+
- uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0
2121
with:
2222
disable-sudo-and-containers: true
2323
allowed-endpoints: >

.github/workflows/pr-image-cleanup.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -14,7 +14,7 @@ jobs:
1414
permissions:
1515
packages: write # is needed by dataaxiom/ghcr-cleanup-action to delete images
1616
steps:
17-
- uses: step-security/harden-runner@6c3c2f2c1c457b00c10c4848d6f5491db3b629df # v2.18.0
17+
- uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0
1818
with:
1919
disable-sudo: true
2020
egress-policy: audit
@@ -29,7 +29,7 @@ jobs:
2929
permissions:
3030
actions: write # is needed to delete workflow run caches
3131
steps:
32-
- uses: step-security/harden-runner@6c3c2f2c1c457b00c10c4848d6f5491db3b629df # v2.18.0
32+
- uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0
3333
with:
3434
disable-sudo-and-containers: true
3535
egress-policy: audit

.github/workflows/pr-report.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -18,7 +18,7 @@ jobs:
1818
actions: read # is needed by philips-software/pull-request-report-action to fetch workflow run information
1919
runs-on: ubuntu-latest
2020
steps:
21-
- uses: step-security/harden-runner@6c3c2f2c1c457b00c10c4848d6f5491db3b629df # v2.18.0
21+
- uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0
2222
with:
2323
disable-sudo-and-containers: true
2424
egress-policy: audit

.github/workflows/release-build.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -38,7 +38,7 @@ jobs:
3838
# currently provide a more fine-grained permission for release modification.
3939
contents: write # is needed to modify a release
4040
steps:
41-
- uses: step-security/harden-runner@6c3c2f2c1c457b00c10c4848d6f5491db3b629df # v2.18.0
41+
- uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0
4242
with:
4343
disable-sudo-and-containers: true
4444
egress-policy: audit
@@ -73,7 +73,7 @@ jobs:
7373
REF_NAME: ${{ github.ref_name }}
7474
REGISTRY: ghcr.io
7575
steps:
76-
- uses: step-security/harden-runner@6c3c2f2c1c457b00c10c4848d6f5491db3b629df # v2.18.0
76+
- uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0
7777
with:
7878
disable-sudo: true
7979
egress-policy: audit
@@ -132,7 +132,7 @@ jobs:
132132
contents: write # is needed to modify a release
133133
needs: [generate-documents]
134134
steps:
135-
- uses: step-security/harden-runner@6c3c2f2c1c457b00c10c4848d6f5491db3b629df # v2.18.0
135+
- uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0
136136
with:
137137
disable-sudo: true
138138
egress-policy: audit
@@ -154,7 +154,7 @@ jobs:
154154
permissions:
155155
pull-requests: write # is needed by rdlf0/comment-released-prs-action to post comments on PRs
156156
steps:
157-
- uses: step-security/harden-runner@6c3c2f2c1c457b00c10c4848d6f5491db3b629df # v2.18.0
157+
- uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0
158158
with:
159159
disable-sudo-and-containers: true
160160
egress-policy: audit

0 commit comments

Comments
 (0)