Skip to content

Bump step-security/harden-runner from 2.5.1 to 2.6.1 #1804

Bump step-security/harden-runner from 2.5.1 to 2.6.1

Bump step-security/harden-runner from 2.5.1 to 2.6.1 #1804

Workflow file for this run

name: ci
on:
pull_request:
types: [assigned, opened, synchronize, reopened, labeled]
concurrency:
group: ${{ github.workflow }}-${{ github.event.pull_request.number }}
cancel-in-progress: true
# Declare default permissions as read only.
permissions: read-all
jobs:
prepare:
name: Prepare pre-requisites
runs-on: ubuntu-22.04
steps:
- name: Harden Runner
uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1
with:
egress-policy: audit
- name: Checkout
uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
- name: Prepare pre-requisites
uses: ./.github/actions/prepare
# Deterministic Build & tests
test:
permissions:
id-token: write
contents: read
actions: read
needs: prepare
uses: slsa-framework/slsa-github-generator/.github/workflows/[email protected]
with:
run-scripts: "install-deps, style, nx-build-skip-cache, nx-test-skip-cache"
node-version: "16.20.0"