From 16d653ca7f99a6a8af5859459514ce72c414f189 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 31 Jan 2024 02:36:50 +0000
Subject: [PATCH] Bump step-security/harden-runner from 2.6.1 to 2.7.0

Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.6.1 to 2.7.0.
- [Release notes](https://github.com/step-security/harden-runner/releases)
- [Commits](https://github.com/step-security/harden-runner/compare/eb238b55efaa70779f274895e782ed17c84f2895...63c24ba6bd7ba022e95695ff85de572c04a18142)

---
updated-dependencies:
- dependency-name: step-security/harden-runner
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/_build.yml                     | 2 +-
 .github/workflows/_dependency-review.yml         | 2 +-
 .github/workflows/_labels.yml                    | 2 +-
 .github/workflows/_scorecards.yml                | 2 +-
 .github/workflows/_stale-issues.yml              | 2 +-
 .github/workflows/common-lint.yml                | 2 +-
 .github/workflows/csv-to-json.yml                | 2 +-
 .github/workflows/diagnostics.yml                | 2 +-
 .github/workflows/docker-build-image.yml         | 2 +-
 .github/workflows/docker-metadata.yml            | 2 +-
 .github/workflows/docker-multi-arch-push.yml     | 2 +-
 .github/workflows/docker-publish-description.yml | 2 +-
 .github/workflows/docker-pytest-image.yml        | 2 +-
 .github/workflows/sbom-artifact.yml              | 2 +-
 14 files changed, 14 insertions(+), 14 deletions(-)

diff --git a/.github/workflows/_build.yml b/.github/workflows/_build.yml
index feaf572..dcf0a9d 100644
--- a/.github/workflows/_build.yml
+++ b/.github/workflows/_build.yml
@@ -106,7 +106,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895  # tag=v2.6.1
+        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142  # tag=v2.7.0
         with:
           egress-policy: block
 
diff --git a/.github/workflows/_dependency-review.yml b/.github/workflows/_dependency-review.yml
index f892738..9cc36e6 100644
--- a/.github/workflows/_dependency-review.yml
+++ b/.github/workflows/_dependency-review.yml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895  # tag=v2.6.1
+        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142  # tag=v2.7.0
         with:
           disable-sudo: true
           egress-policy: block
diff --git a/.github/workflows/_labels.yml b/.github/workflows/_labels.yml
index 63d230c..ea0d1cd 100644
--- a/.github/workflows/_labels.yml
+++ b/.github/workflows/_labels.yml
@@ -20,7 +20,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895  # tag=v2.6.1
+        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142  # tag=v2.7.0
         with:
           egress-policy: block
           allowed-endpoints: >
diff --git a/.github/workflows/_scorecards.yml b/.github/workflows/_scorecards.yml
index 702d013..af3c450 100644
--- a/.github/workflows/_scorecards.yml
+++ b/.github/workflows/_scorecards.yml
@@ -29,7 +29,7 @@ jobs:
 
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895  # tag=v2.6.1
+        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142  # tag=v2.7.0
         with:
           disable-sudo: true
           egress-policy: block
diff --git a/.github/workflows/_stale-issues.yml b/.github/workflows/_stale-issues.yml
index ad3a7f2..a1178c6 100644
--- a/.github/workflows/_stale-issues.yml
+++ b/.github/workflows/_stale-issues.yml
@@ -14,7 +14,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895  # tag=v2.6.1
+        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142  # tag=v2.7.0
         with:
           disable-sudo: true
           egress-policy: block
diff --git a/.github/workflows/common-lint.yml b/.github/workflows/common-lint.yml
index 94f40ae..85af746 100644
--- a/.github/workflows/common-lint.yml
+++ b/.github/workflows/common-lint.yml
@@ -50,7 +50,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895  # tag=v2.6.1
+        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142  # tag=v2.7.0
         with:
           disable-sudo: true
           egress-policy: block
diff --git a/.github/workflows/csv-to-json.yml b/.github/workflows/csv-to-json.yml
index c1ec473..5402529 100644
--- a/.github/workflows/csv-to-json.yml
+++ b/.github/workflows/csv-to-json.yml
@@ -23,7 +23,7 @@ jobs:
       json: ${{ steps.csv-to-json.outputs.json }}
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895  # tag=v2.6.1
+        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142  # tag=v2.7.0
         with:
           egress-policy: block
           allowed-endpoints: >
diff --git a/.github/workflows/diagnostics.yml b/.github/workflows/diagnostics.yml
index 5416453..eb05fdd 100644
--- a/.github/workflows/diagnostics.yml
+++ b/.github/workflows/diagnostics.yml
@@ -15,7 +15,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895  # tag=v2.6.1
+        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142  # tag=v2.7.0
         with:
           egress-policy: block
           allowed-endpoints: >
diff --git a/.github/workflows/docker-build-image.yml b/.github/workflows/docker-build-image.yml
index 0cd965d..4ff5934 100644
--- a/.github/workflows/docker-build-image.yml
+++ b/.github/workflows/docker-build-image.yml
@@ -156,7 +156,7 @@ jobs:
       image_archive_name: ${{ steps.check_image_archive_key.outputs.file_name }}
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895  # tag=v2.6.1
+        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142  # tag=v2.7.0
         with:
           disable-sudo: true
           egress-policy: audit
diff --git a/.github/workflows/docker-metadata.yml b/.github/workflows/docker-metadata.yml
index a573405..4b33e1a 100644
--- a/.github/workflows/docker-metadata.yml
+++ b/.github/workflows/docker-metadata.yml
@@ -38,7 +38,7 @@ jobs:
       tags: ${{ steps.prep.outputs.tags }}
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895  # tag=v2.6.1
+        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142  # tag=v2.7.0
         with:
           egress-policy: block
           allowed-endpoints: >
diff --git a/.github/workflows/docker-multi-arch-push.yml b/.github/workflows/docker-multi-arch-push.yml
index dc01ff7..bc12680 100644
--- a/.github/workflows/docker-multi-arch-push.yml
+++ b/.github/workflows/docker-multi-arch-push.yml
@@ -36,7 +36,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895  # tag=v2.6.1
+        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142  # tag=v2.7.0
         with:
           allowed-endpoints: >
             auth.docker.io:443
diff --git a/.github/workflows/docker-publish-description.yml b/.github/workflows/docker-publish-description.yml
index b454925..bc3b324 100644
--- a/.github/workflows/docker-publish-description.yml
+++ b/.github/workflows/docker-publish-description.yml
@@ -31,7 +31,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895  # tag=v2.6.1
+        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142  # tag=v2.7.0
         with:
           egress-policy: audit  # TODO: change to 'egress-policy: block' after couple of runs
 
diff --git a/.github/workflows/docker-pytest-image.yml b/.github/workflows/docker-pytest-image.yml
index 2848d66..7317e23 100644
--- a/.github/workflows/docker-pytest-image.yml
+++ b/.github/workflows/docker-pytest-image.yml
@@ -65,7 +65,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895  # tag=v2.6.1
+        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142  # tag=v2.7.0
         with:
           egress-policy: block
           allowed-endpoints: >
diff --git a/.github/workflows/sbom-artifact.yml b/.github/workflows/sbom-artifact.yml
index 742a7ab..5c5ccc0 100644
--- a/.github/workflows/sbom-artifact.yml
+++ b/.github/workflows/sbom-artifact.yml
@@ -44,7 +44,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895  # tag=v2.6.1
+        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142  # tag=v2.7.0
         with:
           disable-sudo: true
           egress-policy: audit