From 4d47f7eae10d304ff0f3b5adbb6ba247e9b74d97 Mon Sep 17 00:00:00 2001
From: Typpi <20943337+Nick2bad4u@users.noreply.github.com>
Date: Thu, 23 May 2024 23:34:29 -0400
Subject: [PATCH] Update devskim.yml

---
 .github/workflows/devskim.yml | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/devskim.yml b/.github/workflows/devskim.yml
index 59e416b..f30fb2b 100644
--- a/.github/workflows/devskim.yml
+++ b/.github/workflows/devskim.yml
@@ -28,7 +28,11 @@ jobs:
       - name: Harden Runner
         uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0
         with:
-          egress-policy: audit
+          disable-sudo: true
+          egress-policy: block
+          allowed-endpoints: >
+            api.github.com:443
+            github.com:443
 
       - name: Checkout code
         uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6