Commit 57e5ccb
authored
Update step-security/harden-runner action to v2.11.0 (#150)
This PR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
|
[step-security/harden-runner](https://redirect.github.com/step-security/harden-runner)
| action | minor | `v2.10.1` -> `v2.11.0` |
---
### Release Notes
<details>
<summary>step-security/harden-runner
(step-security/harden-runner)</summary>
###
[`v2.11.0`](https://redirect.github.com/step-security/harden-runner/releases/tag/v2.11.0)
[Compare
Source](https://redirect.github.com/step-security/harden-runner/compare/v2.10.4...v2.11.0)
##### What's Changed
Release v2.11.0 in
[#​498](https://redirect.github.com/step-security/harden-runner/issues/498)
Harden-Runner Enterprise tier now supports the use of eBPF for DNS
resolution and network call monitoring
**Full Changelog**:
step-security/harden-runner@v2...v2.11.0
###
[`v2.10.4`](https://redirect.github.com/step-security/harden-runner/releases/tag/v2.10.4)
[Compare
Source](https://redirect.github.com/step-security/harden-runner/compare/v2.10.3...v2.10.4)
##### What's Changed
Fixed a potential Harden-Runner post step failure that could occur when
printing agent service logs. The fix gracefully handles failures without
failing the post step.
**Full Changelog**:
step-security/harden-runner@v2...v2.10.4
###
[`v2.10.3`](https://redirect.github.com/step-security/harden-runner/releases/tag/v2.10.3)
[Compare
Source](https://redirect.github.com/step-security/harden-runner/compare/v2.10.2...v2.10.3)
##### What's Changed
Fixed an issue where DNS requests using uppercase characters (e.g.,
EXAMPLE.com) were blocked even when the domain was present in the
allowed list. This update standardizes domain names to lowercase for
consistent comparison.
**Full Changelog**:
step-security/harden-runner@v2...v2.10.3
###
[`v2.10.2`](https://redirect.github.com/step-security/harden-runner/releases/tag/v2.10.2)
[Compare
Source](https://redirect.github.com/step-security/harden-runner/compare/v2.10.1...v2.10.2)
##### What's Changed
1. Fixes low-severity command injection weaknesses
The advisory is here:
GHSA-g85v-wf27-67xc
2. Bug fix to improve detection of whether Harden-Runner is running in a
container
**Full Changelog**:
step-security/harden-runner@v2...v2.10.2
</details>
---
### Configuration
📅 **Schedule**: Branch creation - "on the first day of the month" (UTC),
Automerge - At any time (no schedule defined).
🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.
♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.
🔕 **Ignore**: Close this PR and you won't be reminded about this update
again.
---
- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box
---
This PR was generated by [Mend Renovate](https://mend.io/renovate/).
View the [repository job
log](https://developer.mend.io/github/jaegertracing/jaeger-idl).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4xNzYuMiIsInVwZGF0ZWRJblZlciI6IjM5LjE3Ni4yIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJjaGFuZ2Vsb2c6ZGVwZW5kZW5jaWVzIl19-->
Signed-off-by: Mend Renovate <[email protected]>1 parent a2299af commit 57e5ccb
2 files changed
+2
-2
lines changed| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
43 | 43 | | |
44 | 44 | | |
45 | 45 | | |
46 | | - | |
| 46 | + | |
47 | 47 | | |
48 | 48 | | |
49 | 49 | | |
| |||
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
21 | 21 | | |
22 | 22 | | |
23 | 23 | | |
24 | | - | |
| 24 | + | |
25 | 25 | | |
26 | 26 | | |
27 | 27 | | |
| |||
0 commit comments