chore(deps): Update step-security/harden-runner action to v2.10.3 (#837)

Signed-off-by: Renovate <[email protected]>
Co-authored-by: Renovate <[email protected]>

.github/workflows/ansible-lint.yml

@@ -32,7 +32,7 @@ jobs:
       contents: 'read'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           disable-sudo: true
           egress-policy: 'block'

.github/workflows/commitlint.yml

@@ -14,7 +14,7 @@ jobs:
       contents: 'read'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'block'
           allowed-endpoints: >

.github/workflows/container_image_retention.yml

@@ -41,7 +41,7 @@ jobs:
       require-result: '${{ steps.check-access.outputs.require-result }}'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'block'
           allowed-endpoints: >
@@ -180,7 +180,7 @@ jobs:
       packages: 'write'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           disable-sudo: true
           egress-policy: 'block'

.github/workflows/dependency_review.yml

@@ -17,7 +17,7 @@ jobs:
       pull-requests: 'write'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           disable-sudo: true
           egress-policy: 'block'

.github/workflows/docs_image.yml

@@ -45,7 +45,7 @@ jobs:
       require-result: '${{ steps.check-access.outputs.require-result }}'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'block'
           allowed-endpoints: >
@@ -190,7 +190,7 @@ jobs:
       security-events: 'write'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'block'
           allowed-endpoints: >

.github/workflows/github_pages.yml

@@ -45,7 +45,7 @@ jobs:
     runs-on: 'ubuntu-24.04'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'block'
           allowed-endpoints: >
@@ -127,7 +127,7 @@ jobs:
       url: '${{ steps.pages-info.outputs.page_url }}'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'block'
           allowed-endpoints: >

.github/workflows/gitleaks.yml

@@ -18,7 +18,7 @@ jobs:
       contents: 'read'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'block'
           disable-sudo: true

.github/workflows/hadolint.yml

@@ -20,7 +20,7 @@ jobs:
       contents: 'read'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'block'
           disable-sudo: true

.github/workflows/kics.yml

@@ -37,7 +37,7 @@ jobs:
 
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'block'
           disable-sudo: true

.github/workflows/markdown-link-check.yml

@@ -21,7 +21,7 @@ jobs:
       contents: 'read'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'audit'
           disable-sudo: true

.github/workflows/markdownlint.yml

@@ -21,7 +21,7 @@ jobs:
       contents: 'read'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'block'
           disable-sudo: true

.github/workflows/molecule_certified_ees.yml

@@ -106,7 +106,7 @@ jobs:
       secrets-defined: '${{ steps.secret-check.outputs.secrets-defined }}'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           disable-sudo: true
           egress-policy: 'block'
@@ -149,7 +149,7 @@ jobs:
       repo-cache: '${{ steps.cache-check.outputs.repo-cache }}'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           disable-sudo: true
           egress-policy: 'block'

.github/workflows/pre-commit.yml

@@ -54,7 +54,7 @@ jobs:
     runs-on: 'ubuntu-24.04'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'audit'
 

.github/workflows/purge_caches.yml

@@ -30,7 +30,7 @@ jobs:
       require-result: '${{ steps.check-access.outputs.require-result }}'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'block'
           allowed-endpoints: >
@@ -76,7 +76,7 @@ jobs:
       actions: 'write'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           disable-sudo: true
           egress-policy: 'block'

.github/workflows/pyspelling.yml

@@ -18,7 +18,7 @@ jobs:
       contents: 'read'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'block'
           disable-sudo: true

.github/workflows/release.yml

@@ -32,7 +32,7 @@ jobs:
       secrets-defined: '${{ steps.secret-check.outputs.secrets-defined }}'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           disable-sudo: true
           egress-policy: 'block'
@@ -70,7 +70,7 @@ jobs:
       pull-requests: 'write'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'block'
           disable-sudo: true

.github/workflows/renovate.yml

@@ -76,7 +76,7 @@ jobs:
       secrets-defined: '${{ steps.secret-check.outputs.secrets-defined }}'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           disable-sudo: true
           egress-policy: 'block'
@@ -121,7 +121,7 @@ jobs:
       require-result: '${{ steps.check-access.outputs.require-result }}'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'block'
           allowed-endpoints: >
@@ -167,7 +167,7 @@ jobs:
       pull-requests: 'write'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'block'
           allowed-endpoints: >

.github/workflows/renovate_configuration_check.yml

@@ -29,7 +29,7 @@ jobs:
       contents: 'read'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           disable-sudo: true
           egress-policy: 'block'

.github/workflows/scorecard.yml

@@ -30,7 +30,7 @@ jobs:
       secrets-defined: '${{ steps.secret-check.outputs.secrets-defined }}'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           disable-sudo: true
           egress-policy: 'block'
@@ -70,7 +70,7 @@ jobs:
 
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'block'
           disable-sudo: true

.github/workflows/trivy.yml

@@ -32,7 +32,7 @@ jobs:
 
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           disable-sudo: true
           egress-policy: 'block'

.github/workflows/wf_call_molecule_certified_ees.yml

@@ -52,7 +52,7 @@ jobs:
       require-result: '${{ steps.check-access.outputs.require-result }}'
     steps:
       - name: 'Harden Runner'
-        uses: 'step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f' # v2.10.2
+        uses: 'step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350' # v2.10.3
         with:
           egress-policy: 'block'
           allowed-endpoints: >