🔒 fix: Update hardened runner policy to block for the ossf scorecard …

…security workflow (#33) # Description - Update the runner policy back to ```block``` for the ```security-ossf-scorecard.yml``` workflow - Change the name of the devcontainer to match the repository ## Type of change :bug: Bug fix (non-breaking change which fixes an issue)
gsuquet · Mar 18, 2024 · 9b80814 · 9b80814
1 parent d5afa4b
commit 9b80814
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 2 deletions.
diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json
@@ -1,7 +1,7 @@
 // For format details, see https://aka.ms/devcontainer.json. For config options, see the
 // README at: https://github.com/devcontainers/templates/tree/main/src/ubuntu
 {
-	"name": "Base Python 3",
+	"name": "GitHub Centralized Workflows",
 
 	// Or use a Dockerfile or Docker Compose file. More info: https://containers.dev/guide/dockerfile
 	"image": "mcr.microsoft.com/devcontainers/python@sha256:672331fb5736373404e965211a877fdabda822c3d93b85fc90ed00165241b556",

diff --git a/.github/workflows/security-ossf-scorecard.yml b/.github/workflows/security-ossf-scorecard.yml
@@ -41,7 +41,7 @@ jobs:
         if: ${{ inputs.harden_runner != false }}
         with:
           disable-sudo: true
-          egress-policy: audit
+          egress-policy: block
           allowed-endpoints: >
             api.github.com:443
             api.osv.dev:443