Skip to content

fix: update harden-runner action to v2.16.0 for security issue#464

Merged
zkoppert merged 1 commit intomainfrom
jm_update_harden_runner
Mar 19, 2026
Merged

fix: update harden-runner action to v2.16.0 for security issue#464
zkoppert merged 1 commit intomainfrom
jm_update_harden_runner

Conversation

@jmeridth
Copy link
Collaborator

@jmeridth jmeridth commented Mar 19, 2026

Pull Request

Proposed Changes

Readiness Checklist

Author/Contributor

  • If documentation is needed for this change, has that been included in this pull request
  • run make lint and fix any issues that you have introduced
  • run make test and ensure you have test coverage for the lines you are introducing

@jmeridth jmeridth self-assigned this Mar 19, 2026
@jmeridth jmeridth requested a review from zkoppert as a code owner March 19, 2026 01:13
Copilot AI review requested due to automatic review settings March 19, 2026 01:14
@github-actions github-actions bot added the fix label Mar 19, 2026
Copilot AI reviewed Mar 19, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR updates the pinned step-security/harden-runner GitHub Action to v2.16.0 (via commit SHA) across workflows, addressing a security-related dependency update in the CI/security automation layer.

Changes:

  • Bump step-security/harden-runner from v2.15.1 to v2.16.0 in all workflows that use it.
  • Keep actions pinned to an immutable commit SHA with an inline version comment for traceability.

Reviewed changes

Copilot reviewed 10 out of 10 changed files in this pull request and generated no comments.

Show a summary per file
File Description
.github/workflows/use-action.yml Updates harden-runner action pin to v2.16.0.
.github/workflows/stale.yaml Updates harden-runner action pin to v2.16.0.
.github/workflows/scorecard.yml Updates harden-runner action pin to v2.16.0.
.github/workflows/python-package.yml Updates harden-runner action pin to v2.16.0.
.github/workflows/major-version-updater.yml Updates harden-runner action pin to v2.16.0.
.github/workflows/linter.yaml Updates harden-runner action pin to v2.16.0.
.github/workflows/docker-image.yml Updates harden-runner action pin to v2.16.0.
.github/workflows/dependency-review.yml Updates harden-runner action pin to v2.16.0.
.github/workflows/copilot-setup-steps.yml Updates harden-runner action pin to v2.16.0.
.github/workflows/codeql.yml Updates harden-runner action pin to v2.16.0.

@jmeridth jmeridth mentioned this pull request Mar 19, 2026
Merged
@zkoppert zkoppert merged commit 680e31d into main Mar 19, 2026
42 checks passed
@zkoppert zkoppert deleted the jm_update_harden_runner branch March 19, 2026 03:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@zkoppert zkoppert zkoppert approved these changes

Assignees

@jmeridth jmeridth

Labels

fix

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@jmeridth @zkoppert