From 2a8eb679a5a79a3e58b30920c49f6ba71e91a971 Mon Sep 17 00:00:00 2001 From: Moshe Vayner Date: Mon, 11 May 2026 11:35:58 -0400 Subject: [PATCH] [ci] Remove 'disable-sudo' option from Harden Runner step in CI workflows Signed-off-by: Moshe Vayner --- .github/workflows/helm.yml | 2 -- .github/workflows/release-drafter.yml | 1 - .github/workflows/release.yml | 1 - 3 files changed, 4 deletions(-) diff --git a/.github/workflows/helm.yml b/.github/workflows/helm.yml index 551483b3..154a1f63 100644 --- a/.github/workflows/helm.yml +++ b/.github/workflows/helm.yml @@ -17,7 +17,6 @@ jobs: - name: Harden Runner uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0 with: - disable-sudo: true egress-policy: audit - name: Checkout uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 @@ -61,7 +60,6 @@ jobs: - name: Harden Runner uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0 with: - disable-sudo: true egress-policy: audit - name: Checkout uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 diff --git a/.github/workflows/release-drafter.yml b/.github/workflows/release-drafter.yml index 89df3efe..443d146e 100644 --- a/.github/workflows/release-drafter.yml +++ b/.github/workflows/release-drafter.yml @@ -19,7 +19,6 @@ jobs: - name: Harden Runner uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0 with: - disable-sudo: true egress-policy: audit - uses: release-drafter/release-drafter@5de93583980a40bd78603b6dfdcda5b4df377b32 # v7.2.0 env: diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index f50e2b75..938cf2e4 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -16,7 +16,6 @@ jobs: - name: Harden Runner uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0 with: - disable-sudo: true egress-policy: audit - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: