Skip to content

Commit 3ec497a

Browse files
Update github-actions
1 parent 70e3081 commit 3ec497a

7 files changed

Lines changed: 19 additions & 19 deletions

File tree

.github/workflows/build.yml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -29,7 +29,7 @@ jobs:
2929

3030
steps:
3131
- name: Harden the runner (Audit all outbound calls)
32-
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
32+
uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0
3333
with:
3434
egress-policy: audit
3535

@@ -58,7 +58,7 @@ jobs:
5858

5959
steps:
6060
- name: Harden the runner (Audit all outbound calls)
61-
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
61+
uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0
6262
with:
6363
egress-policy: audit
6464

@@ -115,7 +115,7 @@ jobs:
115115

116116
steps:
117117
- name: Harden the runner (Audit all outbound calls)
118-
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
118+
uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0
119119
with:
120120
egress-policy: audit
121121

@@ -160,7 +160,7 @@ jobs:
160160

161161
steps:
162162
- name: Harden the runner (Audit all outbound calls)
163-
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
163+
uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0
164164
with:
165165
egress-policy: audit
166166

@@ -194,7 +194,7 @@ jobs:
194194

195195
steps:
196196
- name: Harden the runner (Audit all outbound calls)
197-
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
197+
uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0
198198
with:
199199
egress-policy: audit
200200

.github/workflows/create-tag.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -21,7 +21,7 @@ jobs:
2121
runs-on: "ubuntu-latest"
2222
steps:
2323
- name: Harden the runner (Audit all outbound calls)
24-
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
24+
uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0
2525
with:
2626
egress-policy: audit
2727

.github/workflows/lint-workflows.yml

Lines changed: 8 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,7 @@ jobs:
1515
runs-on: ubuntu-latest
1616
steps:
1717
- name: Harden the runner (Audit all outbound calls)
18-
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
18+
uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0
1919
with:
2020
egress-policy: audit
2121

@@ -35,7 +35,7 @@ jobs:
3535
timeout-minutes: 10
3636
steps:
3737
- name: Harden the runner (Audit all outbound calls)
38-
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
38+
uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0
3939
with:
4040
egress-policy: audit
4141

@@ -47,7 +47,7 @@ jobs:
4747
filter_triggers: ''
4848

4949
- name: Upload SARIF file to GitHub
50-
uses: github/codeql-action/upload-sarif@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2
50+
uses: github/codeql-action/upload-sarif@54f647b7e1bb85c95cddabcd46b0c578ec92bc1a # v4.36.3
5151
with:
5252
sarif_file: "${{steps.octoscan.outputs.sarif_output}}"
5353
category: octoscan
@@ -60,7 +60,7 @@ jobs:
6060
security-events: write # Required for codeql-action/upload-sarif to upload SARIF files.
6161
steps:
6262
- name: Harden the runner (Audit all outbound calls)
63-
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
63+
uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0
6464
with:
6565
egress-policy: audit
6666

@@ -73,7 +73,7 @@ jobs:
7373
uses: boostsecurityio/poutine-action@e240ebd3eff8b2db5a8e5f6b28f58739d7db2247 # v1.1.4
7474

7575
- name: Upload poutine SARIF file
76-
uses: github/codeql-action/upload-sarif@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2
76+
uses: github/codeql-action/upload-sarif@54f647b7e1bb85c95cddabcd46b0c578ec92bc1a # v4.36.3
7777
with:
7878
sarif_file: results.sarif
7979
category: poutine
@@ -86,7 +86,7 @@ jobs:
8686
security-events: write # Required for codeql-action/upload-sarif to upload SARIF files.
8787
steps:
8888
- name: Harden the runner (Audit all outbound calls)
89-
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
89+
uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0
9090
with:
9191
egress-policy: audit
9292

@@ -96,7 +96,7 @@ jobs:
9696
persist-credentials: false
9797

9898
- name: Install the latest version of uv
99-
uses: astral-sh/setup-uv@fac544c07dec837d0ccb6301d7b5580bf5edae39 # v8.2.0
99+
uses: astral-sh/setup-uv@11f9893b081a58869d3b5fccaea48c9e9e46f990 # v8.3.2
100100
with:
101101
enable-cache: false
102102

@@ -106,7 +106,7 @@ jobs:
106106
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
107107

108108
- name: Upload SARIF file
109-
uses: github/codeql-action/upload-sarif@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2
109+
uses: github/codeql-action/upload-sarif@54f647b7e1bb85c95cddabcd46b0c578ec92bc1a # v4.36.3
110110
with:
111111
sarif_file: results.sarif
112112
category: zizmor

.github/workflows/lock-closed-issues.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -14,7 +14,7 @@ jobs:
1414
runs-on: ubuntu-latest
1515
steps:
1616
- name: Harden the runner (Audit all outbound calls)
17-
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
17+
uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0
1818
with:
1919
egress-policy: audit
2020

.github/workflows/release-toot.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -11,11 +11,11 @@ jobs:
1111
runs-on: ubuntu-latest
1212
steps:
1313
- name: Harden the runner (Audit all outbound calls)
14-
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
14+
uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0
1515
with:
1616
egress-policy: audit
1717

18-
- uses: cbrgm/mastodon-github-action@244bbe72e61b4490e2dc1c34f9537ae9299ae601 # v2.2.1
18+
- uses: cbrgm/mastodon-github-action@ac2d8e8c9986a17b824dd12dd9df4ce5fcd813c1 # v2.2.2
1919
if: ${{ !github.event.repository.private }}
2020
with:
2121
# GitHub event payload

.github/workflows/release-tweet.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -11,7 +11,7 @@ jobs:
1111
runs-on: ubuntu-latest
1212
steps:
1313
- name: Harden the runner (Audit all outbound calls)
14-
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
14+
uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0
1515
with:
1616
egress-policy: audit
1717

.github/workflows/release.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -14,7 +14,7 @@ jobs:
1414

1515
steps:
1616
- name: Harden the runner (Audit all outbound calls)
17-
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
17+
uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0
1818
with:
1919
egress-policy: audit
2020

0 commit comments

Comments
 (0)