chore(deps): update step-security/harden-runner action to v2.9.0

.github/workflows/ansible-lint.yml

@@ -17,7 +17,7 @@ jobs:
       contents: 'read'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           disable-sudo: true
           egress-policy: 'block'

.github/workflows/commitlint.yml

@@ -14,7 +14,7 @@ jobs:
       contents: 'read'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           egress-policy: 'block'
           allowed-endpoints: >

.github/workflows/dependency_review.yml

@@ -17,7 +17,7 @@ jobs:
       pull-requests: 'write'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           disable-sudo: true
           egress-policy: 'block'

.github/workflows/gitleaks.yml

@@ -18,7 +18,7 @@ jobs:
       contents: 'read'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           egress-policy: 'block'
           disable-sudo: true

.github/workflows/kics.yml

@@ -26,7 +26,7 @@ jobs:
 
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           egress-policy: 'block'
           disable-sudo: true

.github/workflows/markdown-link-check.yml

@@ -17,7 +17,7 @@ jobs:
       contents: 'read'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           egress-policy: 'audit'
           disable-sudo: true

.github/workflows/markdownlint.yml

@@ -17,7 +17,7 @@ jobs:
       contents: 'read'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           egress-policy: 'block'
           disable-sudo: true

.github/workflows/molecule_certified_ees.yml

@@ -65,7 +65,7 @@ jobs:
       secrets-defined: '${{ steps.secret-check.outputs.secrets-defined }}'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           disable-sudo: true
           egress-policy: 'block'

.github/workflows/pre-commit.yml

@@ -43,7 +43,7 @@ jobs:
     runs-on: 'ubuntu-latest'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           egress-policy: 'audit'
 

.github/workflows/pyspelling.yml

@@ -17,7 +17,7 @@ jobs:
       contents: 'read'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           egress-policy: 'block'
           disable-sudo: true

.github/workflows/release.yml

@@ -19,7 +19,7 @@ jobs:
       secrets-defined: '${{ steps.secret-check.outputs.secrets-defined }}'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           disable-sudo: true
           egress-policy: 'block'
@@ -50,7 +50,7 @@ jobs:
       pull-requests: 'write'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           egress-policy: 'block'
           disable-sudo: true

.github/workflows/renovate.yml

@@ -63,7 +63,7 @@ jobs:
       secrets-defined: '${{ steps.secret-check.outputs.secrets-defined }}'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           disable-sudo: true
           egress-policy: 'block'
@@ -93,7 +93,7 @@ jobs:
       contents: 'read'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           disable-sudo: true
           egress-policy: 'block'
@@ -128,7 +128,7 @@ jobs:
       require-result: '${{ steps.check-access.outputs.require-result }}'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           egress-policy: 'block'
           allowed-endpoints: >
@@ -160,7 +160,7 @@ jobs:
       pull-requests: 'write'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           egress-policy: 'block'
           allowed-endpoints: >

.github/workflows/scorecard.yml

@@ -26,7 +26,7 @@ jobs:
       secrets-defined: '${{ steps.secret-check.outputs.secrets-defined }}'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           disable-sudo: true
           egress-policy: 'block'
@@ -59,7 +59,7 @@ jobs:
 
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           egress-policy: 'block'
           disable-sudo: true

.github/workflows/wf_call_molecule_certified_ees.yml

@@ -38,7 +38,7 @@ jobs:
       require-result: '${{ steps.check-access.outputs.require-result }}'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6' # v2.8.1
+        uses: 'step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c' # v2.9.0
         with:
           egress-policy: 'block'
           allowed-endpoints: >