Home Explore Help
Sign In
logic855
/
helm-external-secrets
mirror of https://github.com/external-secrets/external-secrets
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

chore(deps): bump step-security/harden-runner from 2.13.0 to 2.13.1 (#5343)

Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.13.0 to 2.13.1.
- [Release notes](https://github.com/step-security/harden-runner/releases)
- [Commits](https://github.com/step-security/harden-runner/compare/ec9f2d5744a09debf3a187a3f4f675c53b671911...f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a)

---
updated-dependencies:
- dependency-name: step-security/harden-runner
  dependency-version: 2.13.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Gergely Brautigam <skarlso777@gmail.com>
dependabot[bot] 6 months ago
parent
73231666f3
commit
19fe7bb34d
19 changed files with 29 additions and 29 deletions
Unified View Show Diff Stats
  1. 5 5
      .github/workflows/ci.yml
  2. 1 1
      .github/workflows/codeql.yml
  3. 1 1
      .github/workflows/crds.yml
  4. 1 1
      .github/workflows/dependabot-approve.yml
  5. 1 1
      .github/workflows/dependency-review.yml
  6. 1 1
      .github/workflows/dlc.yml
  7. 1 1
      .github/workflows/docs.yml
  8. 1 1
      .github/workflows/e2e-managed.yml
  9. 2 2
      .github/workflows/e2e.yml
  10. 2 2
      .github/workflows/helm.yml
  11. 1 1
      .github/workflows/ok-to-test-managed.yml
  12. 1 1
      .github/workflows/ok-to-test.yml
  13. 2 2
      .github/workflows/publish.yml
  14. 1 1
      .github/workflows/rebuild-image.yml
  15. 3 3
      .github/workflows/release.yml
  16. 1 1
      .github/workflows/release_esoctl.yml
  17. 1 1
      .github/workflows/scorecard.yml
  18. 1 1
      .github/workflows/stale.yml
  19. 2 2
      .github/workflows/update-deps.yml

+ 5 - 5
.github/workflows/ci.yml
View File 

@@ -26,7 +26,7 @@ jobs:
 
     outputs:
 
     outputs:
 
       noop: ${{ steps.noop.outputs.should_skip }}
 
       noop: ${{ steps.noop.outputs.should_skip }}
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
       - name: Detect No-op Changes
 
       - name: Detect No-op Changes
 
@@ -47,7 +47,7 @@ jobs:
 
     if: needs.detect-noop.outputs.noop != 'true' && github.ref != 'refs/heads/main'
 
     if: needs.detect-noop.outputs.noop != 'true' && github.ref != 'refs/heads/main'
 
 
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
       - name: Checkout
 
       - name: Checkout
 
@@ -79,7 +79,7 @@ jobs:
 
     if: needs.detect-noop.outputs.noop != 'true' && github.ref != 'refs/heads/main'
 
     if: needs.detect-noop.outputs.noop != 'true' && github.ref != 'refs/heads/main'
 
 
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
       - name: Checkout
 
       - name: Checkout
 
@@ -93,7 +93,7 @@ jobs:
 
     if: needs.detect-noop.outputs.noop != 'true' && github.ref != 'refs/heads/main'
 
     if: needs.detect-noop.outputs.noop != 'true' && github.ref != 'refs/heads/main'
 
 
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
       - name: Checkout
 
       - name: Checkout
 
@@ -124,7 +124,7 @@ jobs:
 
     if: needs.detect-noop.outputs.noop != 'true'
 
     if: needs.detect-noop.outputs.noop != 'true'
 
 
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
       - name: Checkout
 
       - name: Checkout

+ 1 - 1
.github/workflows/codeql.yml
View File 

@@ -21,7 +21,7 @@ jobs:
 
     strategy:
 
     strategy:
 
       fail-fast: false
 
       fail-fast: false
 
     steps:
 
     steps:
 
-    - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+    - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
       with:
 
       with:
 
         egress-policy: audit
 
         egress-policy: audit
 
     - name: Checkout repository
 
     - name: Checkout repository

+ 1 - 1
.github/workflows/crds.yml
View File 

@@ -18,7 +18,7 @@ jobs:
 
   crd-tests:
 
   crd-tests:
 
     runs-on: ubuntu-latest
 
     runs-on: ubuntu-latest
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
       - name: Checkout
 
       - name: Checkout

+ 1 - 1
.github/workflows/dependabot-approve.yml
View File 

@@ -12,7 +12,7 @@ jobs:
 
     # PRs but also ensures that it only does work for Dependabot PRs.
 
     # PRs but also ensures that it only does work for Dependabot PRs.
 
     if: ${{ github.actor == 'dependabot[bot]' }}
 
     if: ${{ github.actor == 'dependabot[bot]' }}
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
       - uses: actions/create-github-app-token@67018539274d69449ef7c02e8e71183d1719ab42 # v2.1.4
 
       - uses: actions/create-github-app-token@67018539274d69449ef7c02e8e71183d1719ab42 # v2.1.4

+ 1 - 1
.github/workflows/dependency-review.yml
View File 

@@ -17,7 +17,7 @@ jobs:
 
     runs-on: ubuntu-latest
 
     runs-on: ubuntu-latest
 
     steps:
 
     steps:
 
       - name: Harden the runner (Audit all outbound calls)
 
       - name: Harden the runner (Audit all outbound calls)
 
-        uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+        uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit

+ 1 - 1
.github/workflows/dlc.yml
View File 

@@ -16,7 +16,7 @@ jobs:
 
   fossa-scan:
 
   fossa-scan:
 
     runs-on: ubuntu-latest
 
     runs-on: ubuntu-latest
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         if: ${{ env.HAS_FOSSA_KEY == 'true' }}
 
         if: ${{ env.HAS_FOSSA_KEY == 'true' }}
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit

+ 1 - 1
.github/workflows/docs.yml
View File 

@@ -14,7 +14,7 @@ jobs:
 
     permissions:
 
     permissions:
 
       contents: write #needed to publish documentation
 
       contents: write #needed to publish documentation
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
       - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
 
       - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0

+ 1 - 1
.github/workflows/e2e-managed.yml
View File 

@@ -60,7 +60,7 @@ jobs:
 
     if: github.event_name == 'repository_dispatch'
 
     if: github.event_name == 'repository_dispatch'
 
 
 
     steps:
 
     steps:
 
-    - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+    - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
       with:
 
       with:
 
         egress-policy: audit
 
         egress-policy: audit

+ 2 - 2
.github/workflows/e2e.yml
View File 

@@ -64,7 +64,7 @@ jobs:
 
       contents: read  #for checkout
 
       contents: read  #for checkout
 
     if: github.event_name == 'pull_request' && github.event.pull_request.head.repo.full_name == github.repository && github.actor !='dependabot[bot]'
 
     if: github.event_name == 'pull_request' && github.event.pull_request.head.repo.full_name == github.repository && github.actor !='dependabot[bot]'
 
     steps:
 
     steps:
 
-    - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+    - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
       with:
 
       with:
 
         egress-policy: audit
 
         egress-policy: audit
 
 
 
@@ -85,7 +85,7 @@ jobs:
 
       pull-requests: write # to publish the status as comments
 
       pull-requests: write # to publish the status as comments
 
     if: github.event_name == 'repository_dispatch'
 
     if: github.event_name == 'repository_dispatch'
 
     steps:
 
     steps:
 
-    - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+    - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
       with:
 
       with:
 
         egress-policy: audit
 
         egress-policy: audit

+ 2 - 2
.github/workflows/helm.yml
View File 

@@ -20,7 +20,7 @@ jobs:
 
   lint-and-test:
 
   lint-and-test:
 
     runs-on: ubuntu-latest
 
     runs-on: ubuntu-latest
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
       - name: Checkout
 
       - name: Checkout
 
@@ -74,7 +74,7 @@ jobs:
 
     runs-on: ubuntu-latest
 
     runs-on: ubuntu-latest
 
     steps:
 
     steps:
 
       - name: Harden the runner (Audit all outbound calls)
 
       - name: Harden the runner (Audit all outbound calls)
 
-        uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+        uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit

+ 1 - 1
.github/workflows/ok-to-test-managed.yml
View File 

@@ -20,7 +20,7 @@ jobs:
 
     # To create a new GitHub App:
 
     # To create a new GitHub App:
 
     #   https://developer.github.com/apps/building-github-apps/creating-a-github-app/
 
     #   https://developer.github.com/apps/building-github-apps/creating-a-github-app/
 
     # See app.yml for an example app manifest
 
     # See app.yml for an example app manifest
 
-    - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+    - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
       with:
 
       with:
 
         egress-policy: audit
 
         egress-policy: audit
 
     - name: Generate token
 
     - name: Generate token

+ 1 - 1
.github/workflows/ok-to-test.yml
View File 

@@ -16,7 +16,7 @@ jobs:
 
     # Only run for PRs, not issue comments
 
     # Only run for PRs, not issue comments
 
     if: ${{ github.event.issue.pull_request }}
 
     if: ${{ github.event.issue.pull_request }}
 
     steps:
 
     steps:
 
-    - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+    - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
       with:
 
       with:
 
         egress-policy: audit
 
         egress-policy: audit
 
     # Generate a GitHub App installation access token from an App ID and private key
 
     # Generate a GitHub App installation access token from an App ID and private key

+ 2 - 2
.github/workflows/publish.yml
View File 

@@ -53,7 +53,7 @@ jobs:
 
     outputs:
 
     outputs:
 
       image-tag: ${{ steps.container_info.outputs.image-tag }}
 
       image-tag: ${{ steps.container_info.outputs.image-tag }}
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
 
 
@@ -151,7 +151,7 @@ jobs:
 
       id-token: write #for keyless sign
 
       id-token: write #for keyless sign
 
       packages: write #to update packages with added SBOMs.
 
       packages: write #to update packages with added SBOMs.
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
       - name: Checkout
 
       - name: Checkout

+ 1 - 1
.github/workflows/rebuild-image.yml
View File 

@@ -19,7 +19,7 @@ jobs:
 
       timestamp: ${{ steps.timestamp.outputs.timestamp }}
 
       timestamp: ${{ steps.timestamp.outputs.timestamp }}
 
 
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
       - name: Checkout
 
       - name: Checkout

+ 3 - 3
.github/workflows/release.yml
View File 

@@ -26,7 +26,7 @@ jobs:
 
       contents: read
 
       contents: read
 
     steps:
 
     steps:
 
       - name: Harden the runner (Audit all outbound calls)
 
       - name: Harden the runner (Audit all outbound calls)
 
-        uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+        uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
 
 
@@ -45,7 +45,7 @@ jobs:
 
       contents: write # to create a release and push new docs
 
       contents: write # to create a release and push new docs
 
     steps:
 
     steps:
 
       - name: Harden the runner (Audit all outbound calls)
 
       - name: Harden the runner (Audit all outbound calls)
 
-        uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+        uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
 
 
@@ -99,7 +99,7 @@ jobs:
 
       RELEASE_TAG: ${{ github.event.inputs.version }}${{ matrix.tag_suffix }}
 
       RELEASE_TAG: ${{ github.event.inputs.version }}${{ matrix.tag_suffix }}
 
 
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
       - name: Checkout
 
       - name: Checkout

+ 1 - 1
.github/workflows/release_esoctl.yml
View File 

@@ -24,7 +24,7 @@ jobs:
 
     permissions:
 
     permissions:
 
       contents: write # for publishing the release
 
       contents: write # for publishing the release
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
       - name: Checkout
 
       - name: Checkout

+ 1 - 1
.github/workflows/scorecard.yml
View File 

@@ -19,7 +19,7 @@ jobs:
 
       id-token: write
 
       id-token: write
 
 
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
       - name: "Checkout code"
 
       - name: "Checkout code"

+ 1 - 1
.github/workflows/stale.yml
View File 

@@ -13,7 +13,7 @@ jobs:
 
       pull-requests: write  # for actions/stale to close stale PRs
 
       pull-requests: write  # for actions/stale to close stale PRs
 
     runs-on: ubuntu-latest
 
     runs-on: ubuntu-latest
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
       - uses: actions/stale@3a9db7e6a41a89f618792c92c0e97cc736e1b13f # v10.0.0
 
       - uses: actions/stale@3a9db7e6a41a89f618792c92c0e97cc736e1b13f # v10.0.0

+ 2 - 2
.github/workflows/update-deps.yml
View File 

@@ -19,7 +19,7 @@ jobs:
 
       branches: ${{ steps.branches.outputs.branches }}
 
       branches: ${{ steps.branches.outputs.branches }}
 
 
 
     steps:
 
     steps:
 
-      - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+      - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
         with:
 
         with:
 
           egress-policy: audit
 
           egress-policy: audit
 
       - name: Checkout
 
       - name: Checkout
 
@@ -40,7 +40,7 @@ jobs:
 
       matrix:
 
       matrix:
 
         branch: ${{ fromJson(needs.branches.outputs.branches) }}
 
         branch: ${{ fromJson(needs.branches.outputs.branches) }}
 
     steps:
 
     steps:
 
-    - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
 
+    - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
 
       with:
 
       with:
 
         egress-policy: audit
 
         egress-policy: audit
 
     - name: Setup Go
 
     - name: Setup Go