mirror of
https://github.com/netblue30/firejail.git
synced 2026-05-15 14:16:14 -06:00
b97fc172c2
Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.16.1 to 2.19.0.
- [Release notes](https://github.com/step-security/harden-runner/releases)
- [Commits](fe10465874...8d3c67de8e)
---
updated-dependencies:
- dependency-name: step-security/harden-runner
dependency-version: 2.19.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
48 lines
1.2 KiB
YAML
48 lines
1.2 KiB
YAML
# Checks the spelling on all non-third-party files.
|
|
|
|
name: Codespell
|
|
|
|
on:
|
|
workflow_dispatch:
|
|
push:
|
|
branches-ignore:
|
|
- 'dependabot/**'
|
|
paths-ignore:
|
|
- 'm4/**'
|
|
- COPYING
|
|
pull_request:
|
|
paths-ignore:
|
|
- 'm4/**'
|
|
- COPYING
|
|
|
|
permissions: # added using https://github.com/step-security/secure-workflows
|
|
contents: read
|
|
|
|
jobs:
|
|
codespell:
|
|
runs-on: ubuntu-24.04
|
|
timeout-minutes: 5
|
|
steps:
|
|
- name: Harden Runner
|
|
uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40
|
|
with:
|
|
egress-policy: block
|
|
allowed-endpoints: >
|
|
archive.ubuntu.com:80
|
|
azure.archive.ubuntu.com:80
|
|
github.com:443
|
|
packages.microsoft.com:443
|
|
ppa.launchpadcontent.net:443
|
|
security.ubuntu.com:80
|
|
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd
|
|
- name: update package information
|
|
run: sudo apt-get update -qy
|
|
- name: install dependencies
|
|
run: sudo apt-get install -qy codespell
|
|
- name: print env
|
|
run: ./ci/printenv.sh
|
|
- name: configure
|
|
run: ./configure || (cat config.log; exit 1)
|
|
- run: codespell --version
|
|
- name: codespell
|
|
run: make codespell
|