step-security/harden-runner
1
0
Fork 0
mirror of synced 2026-06-05 16:15:14 +00:00
Code Issues Projects Releases Packages Wiki Activity
harden-runner/.github/workflows/recurring-int-tests.yml
stepsecurity-app[bot] cdd8e86cf3
 [StepSecurity] Apply security best practices 
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
2025-03-25 11:15:49 +00:00

39 lines
1.2 KiB
YAML
Raw Blame History

name: Recurring INT tests
on:
workflow_dispatch:
schedule:
- cron: '0 */2 * * *' # every other hour
permissions:
contents: read
jobs:
int-tests:
name: int tests
runs-on: ubuntu-latest
steps:
- name: Harden Runner
uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
- name: Canary test
uses: docker://ghcr.io/step-security/integration-test/int:latest@sha256:76fa60ea6375f276d2b6bc097a5cff08ae2e9db8eb53bea7a9b4627f13b77106
env:
PAT: ${{ secrets.PAT }}
canary: true
int-tls-tests:
name: int tls tests
runs-on: ubuntu-latest
steps:
- name: Harden Runner
uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
- name: Canary test
uses: docker://ghcr.io/step-security/integration-test/int:latest@sha256:76fa60ea6375f276d2b6bc097a5cff08ae2e9db8eb53bea7a9b4627f13b77106
env:
PAT: ${{ secrets.PAT }}
canary-tls: true
Reference in a new issue View git blame Copy permalink