wayback
wayback copied to clipboard
wabarc
Bump step-security/harden-runner from 1.5.0 to 2.7.0
Bumps step-security/harden-runner from 1.5.0 to 2.7.0.
Release notes
Sourced from step-security/harden-runner's releases.
v2.7.0
What's Changed
Release 2.7.0 by
@varunsh-coderand@h0x0erin step-security/harden-runner#376 This release:
- Updates the node runtime to node20
- Adds capability to inspect outbound HTTPS traffic on GitHub-hosted and self-hosted VM runners
Full Changelog: https://github.com/step-security/harden-runner/compare/v2...v2.7.0
v2.6.1
What's Changed
Release v2.6.1 by
@varunsh-coderand@h0x0erin step-security/harden-runner#356 This release:
- Improves the job summary markdown written by the Harden-Runner Action
- Improves detection of cache endpoint used by the job
- Detects use of Kubernetes mode in Actions Runner Controller (ARC) based runners
- Updates dependencies
Full Changelog: https://github.com/step-security/harden-runner/compare/v2...v2.6.1
v2.6.0
What's Changed
Release v2.6.0 by
@varunsh-coderin step-security/harden-runner#346This release adds support for self-hosted Virtual Machine runners (e.g. on EC2).
- Both ephemeral and persistent self-hosted VM runners are supported
- Documentation: https://docs.stepsecurity.io/harden-runner/how-tos/enable-runtime-security-vm
Full Changelog: https://github.com/step-security/harden-runner/compare/v2...v2.6.0
v2.5.1
What's Changed
- Updated default allowed endpoints to include
*.actions.githubusercontent.com. GitHub Actions recently started making calls to additional sub-domains for this domain. Please update to this latest version of harden-runner to allow these new endpoints.- Update README.md by
@varunsh-coderin step-security/harden-runner#326- Bump step-security/harden-runner from 2.4.1 to 2.5.0 by
@dependabotin step-security/harden-runner#327Full Changelog: https://github.com/step-security/harden-runner/compare/v2...v2.5.1
v2.5.0
What's Changed
Release v2.5.0 by
@h0x0erand@varunsh-coderin step-security/harden-runner#325This release:
- Adds support for Actions Runner Controller (ARC) environment
- Improves the job summary markdown
... (truncated)
Commits
63c24baMerge pull request #376 from step-security/rc-795691d3Update dist6339621Update to node204a63cdaAdd tls-inspection capability (#368)dece111Merge pull request #372 from step-security/readme-update1952f97Updates32f00ffUpdate README.mdea8b747Publish test results (#363)c0db65eMerge pull request #359 from step-security/dependabot/github_actions/actions/...4151c05Merge pull request #361 from step-security/dependabot/github_actions/step-sec...- Additional commits viewable in compare view
You can trigger a rebase of this PR by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "Published by a pub.dev verified publisher"){kind=small}
Codecov Report
All modified and coverable lines are covered by tests :white_check_mark:
Comparison is base (
ceafbdf) 43.98% compared to head (3b8ad5f) 43.95%. Report is 1 commits behind head on main.
Additional details and impacted files
@@ Coverage Diff @@
## main #476 +/- ##
==========================================
- Coverage 43.98% 43.95% -0.04%
==========================================
Files 84 84
Lines 6647 6647
==========================================
- Hits 2924 2922 -2
- Misses 3436 3438 +2
Partials 287 287
:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.
![codecov[bot] avatar](https://avatars.githubusercontent.com/in/254?v=4 "Published by a pub.dev verified publisher"){kind=small}