Skip to content

Commit d4ce962

Browse files
CommanderK5CommanderK5
authored
chore: bump versions of gh actions 2.30 (#22217)
Update gh actions: - aquasecurity/trivy-action v0.34.0 - harden-runner v2.14.2
1 parent 16408b1 commit d4ce962

14 files changed

+43
-43
lines changed

.github/workflows/ci.yaml

Lines changed: 16 additions & 16 deletions
Original file line numberDiff line numberDiff line change
@@ -35,7 +35,7 @@ jobs:
3535
tailnet-integration: ${{ steps.filter.outputs.tailnet-integration }}
3636
steps:
3737
- name: Harden Runner
38-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
38+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
3939
with:
4040
egress-policy: audit
4141

@@ -157,7 +157,7 @@ jobs:
157157
runs-on: ${{ github.repository_owner == 'coder' && 'depot-ubuntu-22.04-8' || 'ubuntu-latest' }}
158158
steps:
159159
- name: Harden Runner
160-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
160+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
161161
with:
162162
egress-policy: audit
163163

@@ -251,7 +251,7 @@ jobs:
251251
if: ${{ !cancelled() }}
252252
steps:
253253
- name: Harden Runner
254-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
254+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
255255
with:
256256
egress-policy: audit
257257

@@ -308,7 +308,7 @@ jobs:
308308
timeout-minutes: 20
309309
steps:
310310
- name: Harden Runner
311-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
311+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
312312
with:
313313
egress-policy: audit
314314

@@ -360,7 +360,7 @@ jobs:
360360
- windows-2022
361361
steps:
362362
- name: Harden Runner
363-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
363+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
364364
with:
365365
egress-policy: audit
366366

@@ -554,7 +554,7 @@ jobs:
554554
timeout-minutes: 25
555555
steps:
556556
- name: Harden Runner
557-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
557+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
558558
with:
559559
egress-policy: audit
560560

@@ -616,7 +616,7 @@ jobs:
616616
timeout-minutes: 25
617617
steps:
618618
- name: Harden Runner
619-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
619+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
620620
with:
621621
egress-policy: audit
622622

@@ -688,7 +688,7 @@ jobs:
688688
timeout-minutes: 20
689689
steps:
690690
- name: Harden Runner
691-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
691+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
692692
with:
693693
egress-policy: audit
694694

@@ -715,7 +715,7 @@ jobs:
715715
timeout-minutes: 20
716716
steps:
717717
- name: Harden Runner
718-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
718+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
719719
with:
720720
egress-policy: audit
721721

@@ -748,7 +748,7 @@ jobs:
748748
name: ${{ matrix.variant.name }}
749749
steps:
750750
- name: Harden Runner
751-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
751+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
752752
with:
753753
egress-policy: audit
754754

@@ -828,7 +828,7 @@ jobs:
828828
if: needs.changes.outputs.site == 'true' || needs.changes.outputs.ci == 'true'
829829
steps:
830830
- name: Harden Runner
831-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
831+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
832832
with:
833833
egress-policy: audit
834834

@@ -909,7 +909,7 @@ jobs:
909909

910910
steps:
911911
- name: Harden Runner
912-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
912+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
913913
with:
914914
egress-policy: audit
915915

@@ -980,7 +980,7 @@ jobs:
980980
if: always()
981981
steps:
982982
- name: Harden Runner
983-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
983+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
984984
with:
985985
egress-policy: audit
986986

@@ -1100,7 +1100,7 @@ jobs:
11001100
runs-on: ${{ github.repository_owner == 'coder' && 'depot-ubuntu-22.04-8' || 'ubuntu-latest' }}
11011101
steps:
11021102
- name: Harden Runner
1103-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
1103+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
11041104
with:
11051105
egress-policy: audit
11061106

@@ -1155,7 +1155,7 @@ jobs:
11551155
IMAGE: ghcr.io/coder/coder-preview:${{ steps.build-docker.outputs.tag }}
11561156
steps:
11571157
- name: Harden Runner
1158-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
1158+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
11591159
with:
11601160
egress-policy: audit
11611161

@@ -1552,7 +1552,7 @@ jobs:
15521552
if: needs.changes.outputs.db == 'true' || needs.changes.outputs.ci == 'true' || github.ref == 'refs/heads/main'
15531553
steps:
15541554
- name: Harden Runner
1555-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
1555+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
15561556
with:
15571557
egress-policy: audit
15581558

.github/workflows/deploy.yaml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -36,7 +36,7 @@ jobs:
3636
verdict: ${{ steps.check.outputs.verdict }} # DEPLOY or NOOP
3737
steps:
3838
- name: Harden Runner
39-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
39+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
4040
with:
4141
egress-policy: audit
4242

@@ -65,7 +65,7 @@ jobs:
6565
packages: write # to retag image as dogfood
6666
steps:
6767
- name: Harden Runner
68-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
68+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
6969
with:
7070
egress-policy: audit
7171

@@ -146,7 +146,7 @@ jobs:
146146
needs: deploy
147147
steps:
148148
- name: Harden Runner
149-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
149+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
150150
with:
151151
egress-policy: audit
152152

.github/workflows/docker-base.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -38,7 +38,7 @@ jobs:
3838
if: github.repository_owner == 'coder'
3939
steps:
4040
- name: Harden Runner
41-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
41+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
4242
with:
4343
egress-policy: audit
4444

.github/workflows/dogfood.yaml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -26,7 +26,7 @@ jobs:
2626
runs-on: ${{ github.repository_owner == 'coder' && 'depot-ubuntu-22.04-4' || 'ubuntu-latest' }}
2727
steps:
2828
- name: Harden Runner
29-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
29+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
3030
with:
3131
egress-policy: audit
3232

@@ -125,7 +125,7 @@ jobs:
125125
id-token: write
126126
steps:
127127
- name: Harden Runner
128-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
128+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
129129
with:
130130
egress-policy: audit
131131

.github/workflows/nightly-gauntlet.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -28,7 +28,7 @@ jobs:
2828
- windows-2022
2929
steps:
3030
- name: Harden Runner
31-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
31+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
3232
with:
3333
egress-policy: audit
3434

.github/workflows/pr-auto-assign.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,7 @@ jobs:
1515
runs-on: ubuntu-latest
1616
steps:
1717
- name: Harden Runner
18-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
18+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
1919
with:
2020
egress-policy: audit
2121

.github/workflows/pr-cleanup.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -19,7 +19,7 @@ jobs:
1919
packages: write
2020
steps:
2121
- name: Harden Runner
22-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
22+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
2323
with:
2424
egress-policy: audit
2525

.github/workflows/pr-deploy.yaml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -39,7 +39,7 @@ jobs:
3939
PR_OPEN: ${{ steps.check_pr.outputs.pr_open }}
4040
steps:
4141
- name: Harden Runner
42-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
42+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
4343
with:
4444
egress-policy: audit
4545

@@ -76,7 +76,7 @@ jobs:
7676
runs-on: "ubuntu-latest"
7777
steps:
7878
- name: Harden Runner
79-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
79+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
8080
with:
8181
egress-policy: audit
8282

@@ -184,7 +184,7 @@ jobs:
184184
pull-requests: write # needed for commenting on PRs
185185
steps:
186186
- name: Harden Runner
187-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
187+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
188188
with:
189189
egress-policy: audit
190190

@@ -228,7 +228,7 @@ jobs:
228228
CODER_IMAGE_TAG: ${{ needs.get_info.outputs.CODER_IMAGE_TAG }}
229229
steps:
230230
- name: Harden Runner
231-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
231+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
232232
with:
233233
egress-policy: audit
234234

@@ -288,7 +288,7 @@ jobs:
288288
PR_HOSTNAME: "pr${{ needs.get_info.outputs.PR_NUMBER }}.${{ secrets.PR_DEPLOYMENTS_DOMAIN }}"
289289
steps:
290290
- name: Harden Runner
291-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
291+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
292292
with:
293293
egress-policy: audit
294294

.github/workflows/release-validation.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -14,7 +14,7 @@ jobs:
1414

1515
steps:
1616
- name: Harden Runner
17-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
17+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
1818
with:
1919
egress-policy: audit
2020

.github/workflows/release.yaml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -164,7 +164,7 @@ jobs:
164164
version: ${{ steps.version.outputs.version }}
165165
steps:
166166
- name: Harden Runner
167-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
167+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
168168
with:
169169
egress-policy: audit
170170

@@ -802,7 +802,7 @@ jobs:
802802
# TODO: skip this if it's not a new release (i.e. a backport). This is
803803
# fine right now because it just makes a PR that we can close.
804804
- name: Harden Runner
805-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
805+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
806806
with:
807807
egress-policy: audit
808808

@@ -878,7 +878,7 @@ jobs:
878878

879879
steps:
880880
- name: Harden Runner
881-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
881+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
882882
with:
883883
egress-policy: audit
884884

@@ -971,7 +971,7 @@ jobs:
971971
if: ${{ !inputs.dry_run }}
972972
steps:
973973
- name: Harden Runner
974-
uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
974+
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
975975
with:
976976
egress-policy: audit
977977

0 commit comments

Comments
 (0)