From 487aeec1f042b5117cb02946e88d78aedd1cf92a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 16 Jul 2026 02:54:24 +0000 Subject: [PATCH] CI(actions): Bump step-security/harden-runner from 2.19.4 to 2.20.0 Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.19.4 to 2.20.0. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](https://github.com/step-security/harden-runner/compare/9af89fc71515a100421586dfdb3dc9c984fbf411...bf7454d06d71f1098171f2acdf0cd4708d7b5920) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-version: 2.20.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/clear-action-cache.yaml | 2 +- .github/workflows/release-drafter.yaml | 2 +- .github/workflows/tag-push.yaml | 4 ++-- .github/workflows/testing.yaml | 2 +- 4 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/clear-action-cache.yaml b/.github/workflows/clear-action-cache.yaml index 625d309..eba3732 100644 --- a/.github/workflows/clear-action-cache.yaml +++ b/.github/workflows/clear-action-cache.yaml @@ -60,7 +60,7 @@ jobs: # Harden the runner with the just-loaded allow-list. - name: 'Harden runner (block)' # yamllint disable-line rule:line-length - uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 + uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0 with: egress-policy: 'block' allowed-endpoints: > diff --git a/.github/workflows/release-drafter.yaml b/.github/workflows/release-drafter.yaml index 53957b6..3e83f3c 100644 --- a/.github/workflows/release-drafter.yaml +++ b/.github/workflows/release-drafter.yaml @@ -35,7 +35,7 @@ jobs: # Harden the runner with the just-loaded allow-list. - name: 'Harden runner (block)' # yamllint disable-line rule:line-length - uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 + uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0 with: egress-policy: 'block' allowed-endpoints: > diff --git a/.github/workflows/tag-push.yaml b/.github/workflows/tag-push.yaml index 93d716b..30215c8 100644 --- a/.github/workflows/tag-push.yaml +++ b/.github/workflows/tag-push.yaml @@ -43,7 +43,7 @@ jobs: # Harden the runner with the just-loaded allow-list. - name: 'Harden runner (block)' # yamllint disable-line rule:line-length - uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 + uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0 with: egress-policy: 'block' allowed-endpoints: > @@ -85,7 +85,7 @@ jobs: # Harden the runner with the just-loaded allow-list. - name: 'Harden runner (block)' # yamllint disable-line rule:line-length - uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 + uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0 with: egress-policy: 'block' allowed-endpoints: > diff --git a/.github/workflows/testing.yaml b/.github/workflows/testing.yaml index 498ca92..7ce22fd 100644 --- a/.github/workflows/testing.yaml +++ b/.github/workflows/testing.yaml @@ -39,7 +39,7 @@ jobs: # Harden the runner with the just-loaded allow-list. - name: 'Harden runner (block)' # yamllint disable-line rule:line-length - uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 + uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0 with: egress-policy: 'block' allowed-endpoints: >