From 6a660fe75b66ff64744a65ddadb03962a7ad2731 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 10 Dec 2025 10:27:49 +0000
Subject: [PATCH] chore(github-actions): Bump step-security/harden-runner

Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.13.3 to 2.14.0.
- [Release notes](https://github.com/step-security/harden-runner/releases)
- [Commits](https://github.com/step-security/harden-runner/compare/df199fb7be9f65074067a9eb93f12bb4c5547cf2...20cf305ff2072d973412fa9b1e3a4f227bda3c76)

---
updated-dependencies:
- dependency-name: step-security/harden-runner
  dependency-version: 2.14.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/_dependabot-auto-approve-and-merge.yml | 4 ++--
 .github/workflows/_dotnet-build-and-pack.yml             | 2 +-
 .github/workflows/_dotnet-build-and-test.yml             | 2 +-
 .github/workflows/_dotnet-publish-nuget.yml              | 4 ++--
 .github/workflows/_github-tag-and-release.yml            | 2 +-
 .github/workflows/_pr-labeler.yml                        | 4 ++--
 .github/workflows/_pr-lint.yml                           | 4 ++--
 .github/workflows/_version.yml                           | 2 +-
 .github/workflows/dependabot-validate.yml                | 2 +-
 9 files changed, 13 insertions(+), 13 deletions(-)

diff --git a/.github/workflows/_dependabot-auto-approve-and-merge.yml b/.github/workflows/_dependabot-auto-approve-and-merge.yml
index e2f15f7..9a5b476 100644
--- a/.github/workflows/_dependabot-auto-approve-and-merge.yml
+++ b/.github/workflows/_dependabot-auto-approve-and-merge.yml
@@ -21,7 +21,7 @@ jobs:
       update-type: ${{ steps.dependabot-metadata.outputs.update-type }}
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
+        uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
         with:
           egress-policy: audit
 
@@ -57,7 +57,7 @@ jobs:
       pull-requests: write
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
+        uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
         with:
           egress-policy: audit
 
diff --git a/.github/workflows/_dotnet-build-and-pack.yml b/.github/workflows/_dotnet-build-and-pack.yml
index 265ff03..86252c3 100644
--- a/.github/workflows/_dotnet-build-and-pack.yml
+++ b/.github/workflows/_dotnet-build-and-pack.yml
@@ -39,7 +39,7 @@ jobs:
 
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
+        uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
         with:
           disable-sudo: true
           egress-policy: block
diff --git a/.github/workflows/_dotnet-build-and-test.yml b/.github/workflows/_dotnet-build-and-test.yml
index e865ae8..bf7ffde 100644
--- a/.github/workflows/_dotnet-build-and-test.yml
+++ b/.github/workflows/_dotnet-build-and-test.yml
@@ -76,7 +76,7 @@ jobs:
 
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
+        uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
         with:
           disable-sudo: true
           egress-policy: block
diff --git a/.github/workflows/_dotnet-publish-nuget.yml b/.github/workflows/_dotnet-publish-nuget.yml
index 50b34af..a97545c 100644
--- a/.github/workflows/_dotnet-publish-nuget.yml
+++ b/.github/workflows/_dotnet-publish-nuget.yml
@@ -58,7 +58,7 @@ jobs:
 
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
+        uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
         with:
           disable-sudo: true
           egress-policy: block
@@ -114,7 +114,7 @@ jobs:
       matrix: ${{ steps.set-matrix.outputs.matrix }}
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
+        uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
         with:
           disable-sudo: true
           egress-policy: block
diff --git a/.github/workflows/_github-tag-and-release.yml b/.github/workflows/_github-tag-and-release.yml
index a142685..4a472b0 100644
--- a/.github/workflows/_github-tag-and-release.yml
+++ b/.github/workflows/_github-tag-and-release.yml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
+        uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
         with:
           egress-policy: audit
 
diff --git a/.github/workflows/_pr-labeler.yml b/.github/workflows/_pr-labeler.yml
index 9b91395..9ae4a09 100644
--- a/.github/workflows/_pr-labeler.yml
+++ b/.github/workflows/_pr-labeler.yml
@@ -20,7 +20,7 @@ jobs:
 
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
+        uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
         with:
           disable-sudo: true
           egress-policy: block
@@ -82,7 +82,7 @@ jobs:
 
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
+        uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
         with:
           disable-sudo: true
           egress-policy: block
diff --git a/.github/workflows/_pr-lint.yml b/.github/workflows/_pr-lint.yml
index 0b766fc..c76d9b1 100644
--- a/.github/workflows/_pr-lint.yml
+++ b/.github/workflows/_pr-lint.yml
@@ -26,7 +26,7 @@ jobs:
 
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
+        uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
         with:
           disable-sudo: true
           egress-policy: block
@@ -63,7 +63,7 @@ jobs:
     if: ${{ inputs.cspell-config != null }}
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
+        uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
         with:
           disable-sudo: true
           egress-policy: block
diff --git a/.github/workflows/_version.yml b/.github/workflows/_version.yml
index f3980d4..187f23c 100644
--- a/.github/workflows/_version.yml
+++ b/.github/workflows/_version.yml
@@ -35,7 +35,7 @@ jobs:
       current-version: ${{ steps.get-version.outputs.current-version }}
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
+        uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
         with:
           disable-sudo: true
           egress-policy: block
diff --git a/.github/workflows/dependabot-validate.yml b/.github/workflows/dependabot-validate.yml
index 46d297a..786f565 100644
--- a/.github/workflows/dependabot-validate.yml
+++ b/.github/workflows/dependabot-validate.yml
@@ -14,7 +14,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
+        uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
         with:
           egress-policy: audit