From 53659393a23f6fda743330c8b210be1d2792ece4 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 22 May 2026 10:41:11 +0000 Subject: [PATCH] chore(github-actions): Bump step-security/harden-runner Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.19.3 to 2.19.4. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](https://github.com/step-security/harden-runner/compare/ab7a9404c0f3da075243ca237b5fac12c98deaa5...9af89fc71515a100421586dfdb3dc9c984fbf411) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-version: 2.19.4 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- .github/workflows/_dependabot-auto-approve-and-merge.yml | 4 ++-- .github/workflows/_dotnet-build-and-pack.yml | 2 +- .github/workflows/_dotnet-build-and-test.yml | 2 +- .github/workflows/_dotnet-publish-nuget.yml | 4 ++-- .github/workflows/_github-tag-and-release.yml | 2 +- .github/workflows/_pr-labeler.yml | 4 ++-- .github/workflows/_pr-lint.yml | 4 ++-- .github/workflows/_version.yml | 2 +- .github/workflows/dependabot-validate.yml | 2 +- 9 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.github/workflows/_dependabot-auto-approve-and-merge.yml b/.github/workflows/_dependabot-auto-approve-and-merge.yml index 61d135b..0b83768 100644 --- a/.github/workflows/_dependabot-auto-approve-and-merge.yml +++ b/.github/workflows/_dependabot-auto-approve-and-merge.yml @@ -26,7 +26,7 @@ jobs: update-type: ${{ steps.dependabot-metadata.outputs.update-type }} steps: - name: Harden Runner - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: egress-policy: ${{ inputs.harden-runner-policy }} @@ -62,7 +62,7 @@ jobs: pull-requests: write steps: - name: Harden Runner - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: egress-policy: ${{ inputs.harden-runner-policy }} diff --git a/.github/workflows/_dotnet-build-and-pack.yml b/.github/workflows/_dotnet-build-and-pack.yml index 1b0697f..45cbdfe 100644 --- a/.github/workflows/_dotnet-build-and-pack.yml +++ b/.github/workflows/_dotnet-build-and-pack.yml @@ -44,7 +44,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} diff --git a/.github/workflows/_dotnet-build-and-test.yml b/.github/workflows/_dotnet-build-and-test.yml index 9a833bf..157e890 100644 --- a/.github/workflows/_dotnet-build-and-test.yml +++ b/.github/workflows/_dotnet-build-and-test.yml @@ -81,7 +81,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} diff --git a/.github/workflows/_dotnet-publish-nuget.yml b/.github/workflows/_dotnet-publish-nuget.yml index 6d20e99..68fa71a 100644 --- a/.github/workflows/_dotnet-publish-nuget.yml +++ b/.github/workflows/_dotnet-publish-nuget.yml @@ -63,7 +63,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} @@ -121,7 +121,7 @@ jobs: matrix: ${{ steps.set-matrix.outputs.matrix }} steps: - name: Harden Runner - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} diff --git a/.github/workflows/_github-tag-and-release.yml b/.github/workflows/_github-tag-and-release.yml index fbc6b99..09cd0a6 100644 --- a/.github/workflows/_github-tag-and-release.yml +++ b/.github/workflows/_github-tag-and-release.yml @@ -28,7 +28,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: egress-policy: ${{ inputs.harden-runner-policy }} diff --git a/.github/workflows/_pr-labeler.yml b/.github/workflows/_pr-labeler.yml index 3c87ce6..56a2051 100644 --- a/.github/workflows/_pr-labeler.yml +++ b/.github/workflows/_pr-labeler.yml @@ -26,7 +26,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} @@ -88,7 +88,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} diff --git a/.github/workflows/_pr-lint.yml b/.github/workflows/_pr-lint.yml index 9a8dbcf..3937376 100644 --- a/.github/workflows/_pr-lint.yml +++ b/.github/workflows/_pr-lint.yml @@ -31,7 +31,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} @@ -68,7 +68,7 @@ jobs: if: ${{ inputs.cspell-config != null }} steps: - name: Harden Runner - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} diff --git a/.github/workflows/_version.yml b/.github/workflows/_version.yml index 845364c..542acb2 100644 --- a/.github/workflows/_version.yml +++ b/.github/workflows/_version.yml @@ -36,7 +36,7 @@ jobs: current-version: ${{ steps.get-version.outputs.current-version }} steps: - name: Harden Runner - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: disable-sudo: true egress-policy: ${{ inputs.harden-runner-policy }} diff --git a/.github/workflows/dependabot-validate.yml b/.github/workflows/dependabot-validate.yml index 8472fdd..0d45e0b 100644 --- a/.github/workflows/dependabot-validate.yml +++ b/.github/workflows/dependabot-validate.yml @@ -14,7 +14,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: egress-policy: audit