Merge pull request #14 from coveooss/chore/GHA-050814-stepsecurity-remediation

chore(ci): apply security best practices

Author: JPLachance

.github/workflows/go.yaml

@@ -2,6 +2,9 @@ name: Go
 
 on: push
 
+permissions:
+  contents: read
+
 jobs:
 
   build:
@@ -14,10 +17,15 @@ jobs:
           - "1.17"
           - "1.18"
     steps:
-    - uses: actions/checkout@v3
+    - name: Harden the runner (Audit all outbound calls)
+      uses: step-security/harden-runner@c6295a65d1254861815972266d5933fd6e532bdf # v2.11.1
+      with:
+        egress-policy: audit
+
+    - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
 
     - name: Set up Go
-      uses: actions/setup-go@v3
+      uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
       with:
         go-version: ${{ matrix.go }}