From 9433d57b5a8a5ba85ec93ddd57ae805ee98116f2 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 14 May 2026 10:35:14 +0000 Subject: [PATCH] chore(github-actions): Bump step-security/harden-runner Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.19.1 to 2.19.2. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](https://github.com/step-security/harden-runner/compare/a5ad31d6a139d249332a2605b85202e8c0b78450...9ca718d3bf646d6534007c269a635b3e54cadf99) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-version: 2.19.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- .github/workflows/_dependabot-auto-approve-and-merge.yml | 4 ++-- .github/workflows/_dotnet-build-and-pack.yml | 2 +- .github/workflows/_dotnet-build-and-test.yml | 2 +- .github/workflows/_dotnet-publish-nuget.yml | 4 ++-- .github/workflows/_github-tag-and-release.yml | 2 +- .github/workflows/_pr-labeler.yml | 4 ++-- .github/workflows/_pr-lint.yml | 4 ++-- .github/workflows/_version.yml | 2 +- .github/workflows/dependabot-validate.yml | 2 +- 9 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.github/workflows/_dependabot-auto-approve-and-merge.yml b/.github/workflows/_dependabot-auto-approve-and-merge.yml index 3ce8ed1..816edf9 100644 --- a/.github/workflows/_dependabot-auto-approve-and-merge.yml +++ b/.github/workflows/_dependabot-auto-approve-and-merge.yml @@ -26,7 +26,7 @@ jobs: update-type: ${{ steps.dependabot-metadata.outputs.update-type }} steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 with: egress-policy: ${{ inputs.harden-runner-policy }} @@ -62,7 +62,7 @@ jobs: pull-requests: write steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 with: egress-policy: ${{ inputs.harden-runner-policy }} diff --git a/.github/workflows/_dotnet-build-and-pack.yml b/.github/workflows/_dotnet-build-and-pack.yml index c0f9c7a..192e01c 100644 --- a/.github/workflows/_dotnet-build-and-pack.yml +++ b/.github/workflows/_dotnet-build-and-pack.yml @@ -44,7 +44,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} diff --git a/.github/workflows/_dotnet-build-and-test.yml b/.github/workflows/_dotnet-build-and-test.yml index 3c240ff..0f73b70 100644 --- a/.github/workflows/_dotnet-build-and-test.yml +++ b/.github/workflows/_dotnet-build-and-test.yml @@ -81,7 +81,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} diff --git a/.github/workflows/_dotnet-publish-nuget.yml b/.github/workflows/_dotnet-publish-nuget.yml index 6c48b55..9c0a3dd 100644 --- a/.github/workflows/_dotnet-publish-nuget.yml +++ b/.github/workflows/_dotnet-publish-nuget.yml @@ -63,7 +63,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} @@ -121,7 +121,7 @@ jobs: matrix: ${{ steps.set-matrix.outputs.matrix }} steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} diff --git a/.github/workflows/_github-tag-and-release.yml b/.github/workflows/_github-tag-and-release.yml index 37baeb8..6f16bfa 100644 --- a/.github/workflows/_github-tag-and-release.yml +++ b/.github/workflows/_github-tag-and-release.yml @@ -28,7 +28,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 with: egress-policy: ${{ inputs.harden-runner-policy }} diff --git a/.github/workflows/_pr-labeler.yml b/.github/workflows/_pr-labeler.yml index b69f3c9..a95b634 100644 --- a/.github/workflows/_pr-labeler.yml +++ b/.github/workflows/_pr-labeler.yml @@ -26,7 +26,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} @@ -88,7 +88,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} diff --git a/.github/workflows/_pr-lint.yml b/.github/workflows/_pr-lint.yml index 2c0ed84..260e77e 100644 --- a/.github/workflows/_pr-lint.yml +++ b/.github/workflows/_pr-lint.yml @@ -31,7 +31,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} @@ -68,7 +68,7 @@ jobs: if: ${{ inputs.cspell-config != null }} steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} diff --git a/.github/workflows/_version.yml b/.github/workflows/_version.yml index 28d7b84..32e2d36 100644 --- a/.github/workflows/_version.yml +++ b/.github/workflows/_version.yml @@ -36,7 +36,7 @@ jobs: current-version: ${{ steps.get-version.outputs.current-version }} steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} diff --git a/.github/workflows/dependabot-validate.yml b/.github/workflows/dependabot-validate.yml index 683b7b1..d91d01b 100644 --- a/.github/workflows/dependabot-validate.yml +++ b/.github/workflows/dependabot-validate.yml @@ -14,7 +14,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99 # v2.19.2 with: egress-policy: audit