[StepSecurity] Apply security best practices #162

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Open

stepsecurity-app wants to merge 1 commit into main from chore/GHA-240126-stepsecurity-remediation

Contributor

stepsecurity-app bot commented Jan 24, 2026

Summary

This pull request has been generated by StepSecurity as part of your enterprise subscription to ensure compliance with recommended security best practices. Please review and merge the pull request to apply these security enhancements.

Security Fixes

Harden Runner

Harden-Runner is an open-source security agent for the GitHub-hosted runner to prevent software supply chain attacks. It prevents exfiltration of credentials, detects tampering of source code during build, and enables running jobs without sudo access.

Pinned Dependencies

Pinning GitHub Actions to specific versions or commit SHAs ensures that your workflows remain consistent and secure.
Unpinned actions can lead to unexpected changes or vulnerabilities caused by upstream updates.


          [StepSecurity] Apply security best practices

355460b

Signed-off-by: StepSecurity Bot <[email protected]>

Contributor

github-actions bot commented Jan 24, 2026

Test Results (macOS python installed)

168 files ±0 168 suites ±0 1h 8m 45s ⏱️ +24s
444 tests ±0 444 ✅ ±0 0 💤 ±0 0 ❌ ±0
1 222 704 runs ±0 1 222 032 ✅ ±0 672 💤 ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (macOS composite)

168 files ±0 168 suites ±0 1h 8m 45s ⏱️ +24s
444 tests ±0 444 ✅ ±0 0 💤 ±0 0 ❌ ±0
1 222 704 runs ±0 1 222 032 ✅ ±0 672 💤 ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (Linux python venv)

168 files ±0 168 suites ±0 1h 8m 45s ⏱️ +24s
444 tests ±0 444 ✅ ±0 0 💤 ±0 0 ❌ ±0
1 222 704 runs ±0 1 222 032 ✅ ±0 672 💤 ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (Test File)

97 tests ±0 80 ✅ ±0 3m 25s ⏱️ ±0s
1 suites ±0 17 💤 ±0
1 files ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (Linux python 3.8)

168 files ±0 168 suites ±0 1h 8m 45s ⏱️ +24s
444 tests ±0 444 ✅ ±0 0 💤 ±0 0 ❌ ±0
1 222 704 runs ±0 1 222 032 ✅ ±0 672 💤 ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (Windows python venv)

168 files ±0 168 suites ±0 1h 8m 45s ⏱️ +24s
444 tests ±0 444 ✅ ±0 0 💤 ±0 0 ❌ ±0
1 222 704 runs ±0 1 222 032 ✅ ±0 672 💤 ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (Dockerfile)

168 files ±0 168 suites ±0 1h 8m 45s ⏱️ +24s
444 tests ±0 444 ✅ ±0 0 💤 ±0 0 ❌ ±0
1 222 704 runs ±0 1 222 032 ✅ ±0 672 💤 ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (macOS python venv)

168 files ±0 168 suites ±0 1h 8m 45s ⏱️ +24s
444 tests ±0 444 ✅ ±0 0 💤 ±0 0 ❌ ±0
1 222 704 runs ±0 1 222 032 ✅ ±0 672 💤 ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (Windows python installed)

168 files ±0 168 suites ±0 1h 8m 45s ⏱️ +24s
444 tests ±0 444 ✅ ±0 0 💤 ±0 0 ❌ ±0
1 222 704 runs ±0 1 222 032 ✅ ±0 672 💤 ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (Test Files)

217 files ±0 87 errors 733 suites ±0 2h 12m 39s ⏱️ ±0s
1 817 tests ±0 1 520 ✅ ±0 73 💤 ±0 213 ❌ ±0 11 🔥 ±0
4 111 runs ±0 3 426 ✅ ±0 214 💤 ±0 450 ❌ ±0 21 🔥 ±0

For more details on these parsing errors, failures and errors, see this check.

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (Docker Image amd64)

168 files ±0 168 suites ±0 1h 8m 45s ⏱️ +24s
444 tests ±0 444 ✅ ±0 0 💤 ±0 0 ❌ ±0
1 222 704 runs ±0 1 222 032 ✅ ±0 672 💤 ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (Windows bash python venv)

168 files ±0 168 suites ±0 1h 8m 45s ⏱️ +24s
444 tests ±0 444 ✅ ±0 0 💤 ±0 0 ❌ ±0
1 222 704 runs ±0 1 222 032 ✅ ±0 672 💤 ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (Windows bash python installed)

168 files ±0 168 suites ±0 1h 8m 45s ⏱️ +24s
444 tests ±0 444 ✅ ±0 0 💤 ±0 0 ❌ ±0
1 222 704 runs ±0 1 222 032 ✅ ±0 672 💤 ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (Linux python installed)

168 files ±0 168 suites ±0 1h 8m 45s ⏱️ +24s
444 tests ±0 444 ✅ ±0 0 💤 ±0 0 ❌ ±0
1 222 704 runs ±0 1 222 032 ✅ ±0 672 💤 ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (Linux composite)

168 files ±0 168 suites ±0 1h 8m 45s ⏱️ +24s
444 tests ±0 444 ✅ ±0 0 💤 ±0 0 ❌ ±0
1 222 704 runs ±0 1 222 032 ✅ ±0 672 💤 ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (Linux 24.04 python installed)

168 files ±0 168 suites ±0 1h 8m 45s ⏱️ +24s
444 tests ±0 444 ✅ ±0 0 💤 ±0 0 ❌ ±0
1 222 704 runs ±0 1 222 032 ✅ ±0 672 💤 ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (Windows composite)

168 files ±0 168 suites ±0 1h 8m 45s ⏱️ +24s
444 tests ±0 444 ✅ ±0 0 💤 ±0 0 ❌ ±0
1 222 704 runs ±0 1 222 032 ✅ ±0 672 💤 ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (Docker Image arm64)

168 files ±0 168 suites ±0 1h 8m 45s ⏱️ +24s
444 tests ±0 444 ✅ ±0 0 💤 ±0 0 ❌ ±0
1 222 704 runs ±0 1 222 032 ✅ ±0 672 💤 ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Contributor

github-actions bot commented Jan 24, 2026

Test Results (reference)

168 files ±0 168 suites ±0 1h 8m 45s ⏱️ +24s
444 tests ±0 444 ✅ ±0 0 💤 ±0 0 ❌ ±0
1 222 704 runs ±0 1 222 032 ✅ ±0 672 💤 ±0 0 ❌ ±0

Results for commit 355460b. ± Comparison against base commit 6910725.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet