dependabot[bot]
|
e72046ef9f
|
Bump step-security/harden-runner from 2.10.2 to 2.10.3 (#4604)
Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.10.2 to 2.10.3.
- [Release notes](https://github.com/step-security/harden-runner/releases)
- [Commits](0080882f6c...c95a14d0e5)
---
updated-dependencies:
- dependency-name: step-security/harden-runner
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-01-17 10:52:26 +01:00 |
|
StepSecurity Bot
|
5362012fdd
|
[StepSecurity] ci: Harden GitHub Actions (#4551)
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
|
2024-12-17 15:20:06 +01:00 |
|
Niels Lohmann
|
861ec9c3c6
|
Fix token permissions warnings (#4550)
* 🚨 fix token permissions warnings
* 🚨 fix token permissions warnings
* 🚨 fix token permissions warnings
|
2024-12-17 12:55:19 +01:00 |
|
dependabot[bot]
|
58949c0ad5
|
⬆️ Bump actions/github-script from 6.4.0 to 7.0.1 (#4540)
|
2024-12-15 20:13:29 +00:00 |
|
StepSecurity Bot
|
4003f8da02
|
[StepSecurity] Apply security best practices (#4539)
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
|
2024-12-15 18:31:21 +01:00 |
|
Joyce
|
31c00dc729
|
Refactor amalgamation workflow to avoid dangerous use of pull_request_target (#3969)
|
2023-03-08 13:41:20 +01:00 |
|