wait-for-secrets
wait-for-secrets copied to clipboard
step-security
Bump step-security/harden-runner from 2.1.0 to 2.4.1
Bumps step-security/harden-runner from 2.1.0 to 2.4.1.
Release notes
Sourced from step-security/harden-runner's releases.
v2.4.1
What's Changed
Release v2.4.1 by
@varunsh-coderand@Devils-Knightin step-security/harden-runner#309This release
- Shows a preview of the network events in the job summary markdown
- Uses a fallback DNS service from Cloudflare in addition to Google DNS to improve reliability
Full Changelog: https://github.com/step-security/harden-runner/compare/v2...v2.4.1
v2.4.0
What's Changed
- Release v2.4.0 by
@varunsh-coderand@h0x0erin step-security/harden-runner#292 Adds support for wildcard domains inblockmode. e.g. you can add*.data.mcr.microsoft.com:443to the allowed list, and egress traffic will be allowed toeastus.data.mcr.microsoft.com:443andwestus.data.mcr.microsoft.com:443. Link to documentation.- Bump actions/checkout from 3.5.0 to 3.5.2 by
@dependabotin step-security/harden-runner#277- Bump github/codeql-action from 2.2.11 to 2.2.12 by
@dependabotin step-security/harden-runner#278- Bump step-security/harden-runner from 2.3.0 to 2.3.1 by
@dependabotin step-security/harden-runner#282- Added a workflow for reviewing code changes using stepsecurity code reviewer by
@boahc077in step-security/harden-runner#290Full Changelog: https://github.com/step-security/harden-runner/compare/v2...v2.4.0
v2.3.1
What's Changed
- Release v2.3.1 by
@arjundashrathand@varunsh-coderin step-security/harden-runner#281 Fixes #279 and #275- Update README.md by
@varunsh-coderin step-security/harden-runner#267- Bump step-security/harden-runner from 2.2.1 to 2.3.0 by
@dependabotin step-security/harden-runner#268- Bump codecov/codecov-action from 3.1.1 to 3.1.2 by
@dependabotin step-security/harden-runner#273- Bump ossf/scorecard-action from 2.1.2 to 2.1.3 by
@dependabotin step-security/harden-runner#265- Bump actions/checkout from 3.3.0 to 3.5.0 by
@dependabotin step-security/harden-runner#261- Bump github/codeql-action from 2.2.6 to 2.2.11 by
@dependabotin step-security/harden-runner#270Full Changelog: https://github.com/step-security/harden-runner/compare/v2...v2.3.1
v2.3.0
What's Changed
- Enable setting policy via insights website (link to documentation) by
@h0x0erand@varunsh-coderin step-security/harden-runner#266 The Policy Store helps you manage Harden Runner policies without altering your workflow files.- Update README.md by
@varunsh-coderin step-security/harden-runner#255- Bump github/codeql-action from 2.2.4 to 2.2.6 by
@dependabotin step-security/harden-runner#254- Bump step-security/harden-runner from 2.2.0 to 2.2.1 by
@dependabotin step-security/harden-runner#256Full Changelog: https://github.com/step-security/harden-runner/compare/v2...v2.3.0
v2.2.1
What's Changed
- Fix issue to get cache endpoint by
@h0x0erin step-security/harden-runner#253 Harden runner has the ability to automatically detect the cache endpoint used by each job. When Harden runner is used in block mode, this endpoint is added to the list of allowed endpoints. A fix has been implemented to improve this feature by updating the logic used to fetch the cache endpoint. This update involves using code from the actions/cache library to ensure the endpoint is properly retrieved.
... (truncated)
Commits
55d479fRelease v2.4.1 (#309)215c5caMerge pull request #307 from step-security/dependabot/github_actions/github/c...95a625aMerge pull request #306 from step-security/dependabot/github_actions/actions/...7d83e8eBump github/codeql-action from 2.3.3 to 2.13.436ccae2Bump actions/checkout from 3.5.2 to 3.5.3beefd8cMerge pull request #295 from step-security/dependabot/github_actions/github/c...bb523fdMerge pull request #301 from step-security/dependabot/github_actions/codecov/...760976eBump codecov/codecov-action from 3.1.2 to 3.1.4f702486Merge pull request #300 from step-security/ak-codewise-dogfooding1f715feusing ai-codewise int for dogfooding- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebasewill rebase this PR -
@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it -
@dependabot mergewill merge this PR after your CI passes on it -
@dependabot squash and mergewill squash and merge this PR after your CI passes on it -
@dependabot cancel mergewill cancel a previously requested merge and block automerging -
@dependabot reopenwill reopen this PR if it is closed -
@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "Published by a pub.dev verified publisher"){kind=small}