[fix](build): fix indentation (#661)

* [fix](build): fix indentation Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): bundle_cache: false, cache_version:6 Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> --------- Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com>
RalphHightower · Jan 11, 2025 · 6ba5c6f · 6ba5c6f
1 parent b909f17
commit 6ba5c6f
Show file tree

Hide file tree

Showing 12 changed files with 45 additions and 47 deletions.
diff --git a/.github/workflows/NewYearUpdateCopyright.yml b/.github/workflows/NewYearUpdateCopyright.yml
@@ -13,7 +13,7 @@ jobs:
       issues: write
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
+        uses: step-security/harden-runner@v2.10.3
         with:
           egress-policy: audit
 

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
@@ -20,8 +20,8 @@ jobs:
       JEKYLL_VERSION: ${{ matrix.jekyll }}
     steps:
      - name: Harden Runner
-        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
-        with:
+       uses: step-security/harden-runner@v2.10.3
+       with:
             disable-sudo: true
             egress-policy: block
             allowed-endpoints: >
@@ -30,12 +30,12 @@ jobs:
               api.securityscorecards.dev:443
               github.com:443 
         
-      - name: Checkout Repository
-        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
-      - name: Set Up Ruby 3.3.6
-        uses: ruby/setup-ruby@2a18b06812b0e15bb916e1df298d3e740422c47e # v1.203.0
-        with:
+     - name: Checkout Repository
+       uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+     - name: Set Up Ruby 3.3.6
+       uses: ruby/setup-ruby@2a18b06812b0e15bb916e1df298d3e740422c47e # v1.203.0
+       with:
           ruby-version: 3.3.6
           bundler-cache: true
-      - name: Run tests
-        run: script/cibuild
+     - name: Run tests
+       run: script/cibuild
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
@@ -37,28 +37,28 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        language: ["ruby"]
+        language: ["ruby","github-actions"]
         # CodeQL supports [ $supported-codeql-languages ]
         # Learn more about CodeQL language support at https://aka.ms/codeql-docs/language-support
 
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
+        uses: step-security/harden-runner@v2.10.3
         with:
          disable-sudo: true
          egress-policy: block
          allowed-endpoints: >
-         api.github.com:443
-         github.com:443
-         objects.githubusercontent.com:443
-         uploads.github.com:443       
+           api.github.com:443
+           github.com:443
+           objects.githubusercontent.com:443
+           uploads.github.com:443       
 
       - name: Checkout repository
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@6c089f53dd51dc3fc7e599c3cb5356453a52ca9e # v2.20.0
+        uses: github/codeql-action/init@v2.20.1
         with:
           languages: ${{ matrix.language }}
           # If you wish to specify custom queries, you can do so here or in a config file.
@@ -68,7 +68,7 @@ jobs:
       # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
       # If this step fails, then you should remove it and run the build manually (see below)
       - name: Autobuild
-        uses: github/codeql-action/autobuild@6c089f53dd51dc3fc7e599c3cb5356453a52ca9e # v2.20.0
+        uses: github/codeql-action/autobuild@v2.20.1
 
       # ℹ️ Command-line programs to run using the OS shell.
       # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun

diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml
@@ -17,19 +17,17 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@446798f8213ac2e75931c1b0769676d927801858 # v2.10.0
+        uses: step-security/harden-runner@v2.10.3
         with:
-    disable-sudo: true
-    egress-policy: block
-    allowed-endpoints: >
-      api.deps.dev:443
-      api.github.com:443
-      api.securityscorecards.dev:443
-      github.com:443
+          disable-sudo: true
+          egress-policy: block
+          allowed-endpoints: >
+            api.deps.dev:443
+            api.github.com:443
+            api.securityscorecards.dev:443
+            github.com:443
 
-        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
-          egress-policy: audit
-        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+          uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - name: 'Checkout Repository'
       - name: 'Dependency Review'

diff --git a/.github/workflows/jekyll.yml b/.github/workflows/jekyll.yml
@@ -32,7 +32,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
      - name: Harden Runner
-       uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
+       uses: step-security/harden-runner@v2.10.3
        with:
         disable-sudo: true
         egress-policy: block
@@ -49,8 +49,8 @@ jobs:
        uses: ruby/setup-ruby@4a9ddd6f338a97768b8006bf671dfbad383215f4 # v1.207.0
        with:
           ruby-version: '3.3.6' # Not needed with a .ruby-version file
-          bundler-cache: true # runs 'bundle install' and caches installed gems automatically
-          cache-version: 1 # Increment this number if you need to re-download cached gems
+          bundler-cache: false # runs 'bundle install' and caches installed gems automatically
+          cache-version: 6 # Increment this number if you need to re-download cached gems
      - name: Setup Pages
        id: pages
        uses: actions/configure-pages@983d7736d9b0ae728b81ab479565c72886d7745b # v5.0.0
@@ -74,7 +74,7 @@ jobs:
     needs: build
     steps:
         - name: Harden Runner
-          uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
+          uses: step-security/harden-runner@v2.10.3
           with:
             disable-sudo: true
             egress-policy: block

diff --git a/.github/workflows/permission_advisor.yml b/.github/workflows/permission_advisor.yml
@@ -22,11 +22,11 @@ jobs:
     runs-on: ubuntu-latest
     steps:
     - name: Harden Runner
-      uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
+      uses: step-security/harden-runner@v2.10.3
       with:
         egress-policy: audit
 
-    - uses: GitHubSecurityLab/actions-permissions/advisor@aecef454fc649f347a1796348ded6c5d21a14d87 # v1.0.2-beta4
+    - uses: GitHubSecurityLab/actions-permissions/advisor@v1.0.2-beta5
       with:
         name: ${{ inputs.name }}
         count: ${{ inputs.count }}
diff --git a/.github/workflows/readme-checker.yml b/.github/workflows/readme-checker.yml
@@ -9,14 +9,14 @@ jobs:
     runs-on: ubuntu-latest
     steps:
     - name: Harden Runner
-      uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
+      uses: step-security/harden-runner@v2.10.3
       with:
         egress-policy: audit
 
     - name: Checkout 
       uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
     - name: Checking markdown
-      uses: DavidAnson/markdownlint-cli2-action@eb5ca3ab411449c66620fe7f1b3c9e10547144b0 # v18.0.0
+      uses: DavidAnson/markdownlint-cli2-action@v19.0.0
       with:
         globs: |
           *.md

diff --git a/.github/workflows/release-please.yml b/.github/workflows/release-please.yml
@@ -25,7 +25,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
+        uses: step-security/harden-runner@v2.10.3
         with:
           egress-policy: audit
 

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -19,12 +19,12 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
+        uses: step-security/harden-runner@v2.10.3
         with:
           egress-policy: audit
 
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
-      - uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af # v4.1.0
+      - uses: actions/setup-node@v4.1.0
         with:
           cache: npm
           node-version: lts/*

diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
@@ -15,7 +15,7 @@ jobs:
       id-token: write
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
+        uses: step-security/harden-runner@v2.10.3
         with:
           egress-policy: audit
 
@@ -31,12 +31,12 @@ jobs:
           results_format: sarif
           publish_results: true
       - name: Upload artifact
-        uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
+        uses: actions/upload-artifact@v4.6.0
         with:
           name: SARIF file
           path: results.sarif
           retention-days: 5
       - name: Upload to code-scanning
-        uses: github/codeql-action/upload-sarif@6c089f53dd51dc3fc7e599c3cb5356453a52ca9e # v2.20.0
+        uses: github/codeql-action/upload-sarif@v2.20.1
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/semantic-release.yml b/.github/workflows/semantic-release.yml
@@ -41,7 +41,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
+        uses: step-security/harden-runner@v2.10.3
         with:
           egress-policy: audit
 

diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
@@ -34,7 +34,7 @@ jobs:
 
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
+        uses: step-security/harden-runner@v2.10.3
         with:
           egress-policy: audit
 
@@ -57,7 +57,7 @@ jobs:
 
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
+        uses: step-security/harden-runner@v2.10.e
         with:
           egress-policy: audit
 
@@ -84,7 +84,7 @@ jobs:
     if: ${{ !cancelled() }}
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
+        uses: step-security/harden-runner@v2.10.3
         with:
           egress-policy: audit