step-security/harden-runner
1
0
Fork 0
mirror of synced 2026-06-05 14:58:19 +00:00
Code Issues Projects Releases Packages Wiki Activity

Update to node20

Browse source
This commit is contained in:
Varun Sharma 2024-01-29 12:13:17 -08:00
commit 6339621ce7
No known key found for this signature in database
GPG key ID: CE30C1F427CE6272
10 changed files with 84338 additions and 13093 deletions
Download patch file Download diff file Expand all files Collapse all files

2
action.yml
View file

@ -33,7 +33,7 @@ branding:
icon: "check-square" icon: "check-square"
color: "green" color: "green"
runs: runs:
using: "node16" using: "node20"
pre: "dist/pre/index.js" pre: "dist/pre/index.js"
main: "dist/index.js" main: "dist/index.js"
post: "dist/post/index.js" post: "dist/post/index.js"

23967
dist/index.js vendored
View file

File diff suppressed because one or more lines are too long

2
dist/index.js.map vendored
View file

File diff suppressed because one or more lines are too long

23967
dist/post/index.js vendored
View file

File diff suppressed because one or more lines are too long

2
dist/post/index.js.map vendored
View file

File diff suppressed because one or more lines are too long

23862
dist/pre/index.js vendored
View file

File diff suppressed because one or more lines are too long

2
dist/pre/index.js.map vendored
View file

File diff suppressed because one or more lines are too long

2
package.json
View file

@ -1,6 +1,6 @@
{ {
"name": "step-security-harden-runner", "name": "step-security-harden-runner",
"version": "2.6.1", "version": "2.7.0",
"description": "Security agent for GitHub-hosted runner: block egress traffic & detect code overwrite to prevent breaches", "description": "Security agent for GitHub-hosted runner: block egress traffic & detect code overwrite to prevent breaches",
"main": "index.js", "main": "index.js",
"scripts": { "scripts": {

2
src/setup.ts
View file

@ -266,6 +266,8 @@ import { isGithubHosted, isTLSEnabled } from "./tls-inspect";
} catch (error) { } catch (error) {
core.setFailed(error.message); core.setFailed(error.message);
} }
// see https://github.com/ruby/setup-ruby/issues/543
process.exit(0);
})(); })();
export function sleep(ms) { export function sleep(ms) {

1
src/tls-inspect.ts
View file

@ -5,6 +5,7 @@ import * as core from "@actions/core";
export async function isTLSEnabled(owner: string): Promise<boolean> { export async function isTLSEnabled(owner: string): Promise<boolean> {
let tlsStatusEndpoint = `${STEPSECURITY_API_URL}/github/${owner}/actions/tls-inspection-status`; let tlsStatusEndpoint = `${STEPSECURITY_API_URL}/github/${owner}/actions/tls-inspection-status`;
let httpClient = new HttpClient(); let httpClient = new HttpClient();
httpClient.requestOptions = { socketTimeout: 3 * 1000 };
core.info(`[!] Checking TLS_STATUS: ${owner}`); core.info(`[!] Checking TLS_STATUS: ${owner}`);
let isEnabled = false; let isEnabled = false;
try { try {