From dc4fa2a2126857dbf57326d701cff9498eda262f Mon Sep 17 00:00:00 2001 From: Ryan Parman Date: Mon, 8 Apr 2024 13:17:08 -0600 Subject: [PATCH] Update the standard template. --- _download-and-package.gotmpl.yml | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/_download-and-package.gotmpl.yml b/_download-and-package.gotmpl.yml index c48f42e..cfc38da 100644 --- a/_download-and-package.gotmpl.yml +++ b/_download-and-package.gotmpl.yml @@ -52,6 +52,11 @@ jobs: package_version: {{ "${{" }} steps.lookup_version.outputs.package_version {{ "}}" }} steps: + - name: Harden Runner + uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0 + with: + egress-policy: audit + - name: Lookup latest version of package id: lookup_version env: @@ -60,7 +65,7 @@ jobs: echo "package_version=$(download-asset latest-tag -r '{{ .OwnerRepo }}' -s)" >> $GITHUB_OUTPUT - name: Check to see if we've already built this version - uses: actions/cache/restore@v4 + uses: actions/cache/restore@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 id: check with: key: "{{ .Package }}-{{ "${{" }} steps.lookup_version.outputs.package_version {{ "}}" }}"