From a1c40ee1b9f84a0ed437033d922ef1b7786b9cde Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 18 Mar 2022 23:21:16 +0000
Subject: [PATCH] Bump step-security/harden-runner from 1 to 1.4.1

Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 1 to 1.4.1.
- [Release notes](https://github.com/step-security/harden-runner/releases)
- [Commits](https://github.com/step-security/harden-runner/compare/v1...9b0655f430fba8c7001d4e38f8d4306db5c6e0ab)

---
updated-dependencies:
- dependency-name: step-security/harden-runner
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/canary.yml  | 2 +-
 .github/workflows/release.yml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/canary.yml b/.github/workflows/canary.yml
index 6da02b3..6c90938 100644
--- a/.github/workflows/canary.yml
+++ b/.github/workflows/canary.yml
@@ -19,7 +19,7 @@ jobs:
     permissions:
       contents: write
     steps:
-    - uses: step-security/harden-runner@14dc64f30986eaa2ad2dddcec073f5aab18e5a24 # v1
+    - uses: step-security/harden-runner@9b0655f430fba8c7001d4e38f8d4306db5c6e0ab # v1
       with:
         allowed-endpoints: 
           api.github.com:443
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 7e28a40..dc4c92c 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -22,7 +22,7 @@ jobs:
     permissions:
       contents: write
     steps:
-    - uses: step-security/harden-runner@v1
+    - uses: step-security/harden-runner@9b0655f430fba8c7001d4e38f8d4306db5c6e0ab
       with:
         allowed-endpoints: 
           api.github.com:443