FoveaCentral / hit_counter / 22083208987

100%

push

github

build(deps): bump step-security/harden-runner from 2.14.1 to 2.14.2 (#111)

Bumps
[step-security/harden-runner](https://github.com/step-security/harden-runner)
from 2.14.1 to 2.14.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/step-security/harden-runner/releases">step-security/harden-runner's
releases</a>.</em></p>
<blockquote>
<h2>v2.14.2</h2>
<h2>What's Changed</h2>
<p>Security fix: Fixed a medium severity vulnerability where outbound
network connections using sendto, sendmsg, and sendmmsg socket system
calls could bypass audit logging when using egress-policy: audit. This
issue only affects the Community Tier in audit mode; block mode and
Enterprise Tier were not affected. See <a
href="https://github.com/step-security/harden-runner/security/advisories/GHSA-cpmj-h4f6-r6pq">GHSA-cpmj-h4f6-r6pq</a>
for details.</p>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/step-security/harden-runner/compare/v2.14.1...v2.14.2">https://github.com/step-security/harden-runner/compare/v2.14.1...v2.14.2</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/step-security/harden-runner/commit/<a class=hub.com/FoveaCentral/hit_counter/commit/5ef0c079ce82195b2a36a210272d6b661572d83e">5ef0c079c<a href="https://github.com/FoveaCentral/hit_counter/commit/473b6513b1823bb59e6a7cb7a8e9fdd866d59ee2">&quot;&gt;&lt;code&gt;5ef0c07&lt;/code&gt;&lt;/a&gt;
Merge pull request &lt;a
href=&quot;https://redirect.github.com/step-security/harden-runner/issues/635">#635</a>
from step-security/rc-34</li>
<li><a
href="https://github.com/step-security/harden-runner/commit/<a class="double-link" href="https://github.com/FoveaCentral/hit_counter/commit/eb43c7b3fd5a30c42ff1ab84b494f1cc6c7cc3b6">eb43c7b3f</a><a href="https://github.com/FoveaCentral/hit_counter/commit/473b6513b1823bb59e6a7cb7a8e9fdd866d59ee2">&quot;&gt;&lt;code&gt;eb43c7b&lt;/code&gt;&lt;/a&gt;
update agent&lt;/li&gt;
&lt;li&gt;See full diff in &lt;a
href=&quot;https://github.com/step-security/harden-runner/compare/</a><a class="double-link" href="https://github.com/FoveaCentral/hit_counter/commit/e3f713f2d8f53843e71c69a996d56f51aa9adfb9">e3f713f2d...5ef0c079ce82195b2a36a210272d6b661572d83e">compare
view






[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=step-security/harden-runner&package-manager=github_actions&previous-version=2.14.1&new... (continued)

50 of 50 relevant lines covered (100.0%)

26.52 hits per line