Skip to content

Bump step-security/harden-runner from 2.8.1 to 2.10.2 #1155

Bump step-security/harden-runner from 2.8.1 to 2.10.2

Bump step-security/harden-runner from 2.8.1 to 2.10.2 #1155

Workflow file for this run

name: clang-scan
on:
push:
branches: [ '**' ]
pull_request:
branches: [ '**' ]
permissions:
contents: read
jobs:
build:
runs-on: ci-clang-scan
if: ${{ github.repository != 'intel/pcm' }}
steps:
- name: Harden Runner
uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
with:
egress-policy: audit
- uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
with:
submodules: recursive
- name: Configure CMake
run: |
cmake --version
rm -rf ${{ github.workspace }}/build
scan-build cmake -B ${{ github.workspace }}/build
- name: Scan build
run: |
cd ${{ github.workspace }}/build
scan-build --exclude src/simdjson --status-bugs make -j