From 41722842713c4c869c0adf679d745db1c89c285a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=8D=C3=B1igo=20Marqu=C3=ADnez=20Prado?=
 <25435858+inigomarquinez@users.noreply.github.com>
Date: Wed, 31 Jan 2024 19:32:12 +0100
Subject: [PATCH] ci: set egress-policy to audit

---
 .../workflows/code-climate-test-coverage.yml  | 19 ++++++++++---------
 .github/workflows/openssf-scorecard.yml       | 19 ++++++++++---------
 2 files changed, 20 insertions(+), 18 deletions(-)

diff --git a/.github/workflows/code-climate-test-coverage.yml b/.github/workflows/code-climate-test-coverage.yml
index 72bdcc36..362f871a 100644
--- a/.github/workflows/code-climate-test-coverage.yml
+++ b/.github/workflows/code-climate-test-coverage.yml
@@ -14,15 +14,16 @@ jobs:
       - name: 🔐 Harden Runner
         uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1
         with:
-          disable-sudo: true
-          egress-policy: block
-          allowed-endpoints: >
-            github.com:443
-            registry.npmjs.org:443
-            api.github.com:443
-            nodejs.org:443
-            codeclimate.com:443
-            d3iz1jjs17r6kg.cloudfront.net:443
+          egress-policy: audit
+          # disable-sudo: true
+          # egress-policy: block
+          # allowed-endpoints: >
+          #   github.com:443
+          #   registry.npmjs.org:443
+          #   api.github.com:443
+          #   nodejs.org:443
+          #   codeclimate.com:443
+          #   d3iz1jjs17r6kg.cloudfront.net:443
 
       - name: ⚙️ Git Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
diff --git a/.github/workflows/openssf-scorecard.yml b/.github/workflows/openssf-scorecard.yml
index aee28ed2..49fa4f68 100644
--- a/.github/workflows/openssf-scorecard.yml
+++ b/.github/workflows/openssf-scorecard.yml
@@ -31,15 +31,16 @@ jobs:
       - name: 🔐 Harden Runner
         uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1
         with:
-          disable-sudo: true
-          egress-policy: block
-          allowed-endpoints: >
-            github.com:443
-            registry.npmjs.org:443
-            api.github.com:443
-            nodejs.org:443
-            www.bestpractices.dev:443
-            oss-fuzz-build-logs.storage.googleapis.com:443
+          egress-policy: audit
+          # disable-sudo: true
+          # egress-policy: block
+          # allowed-endpoints: >
+          #   github.com:443
+          #   registry.npmjs.org:443
+          #   api.github.com:443
+          #   nodejs.org:443
+          #   www.bestpractices.dev:443
+          #   oss-fuzz-build-logs.storage.googleapis.com:443
 
       - name: ⚙️ Git Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1