From 09b2252f4096dcc4cdae99e8a9664324e752c5b3 Mon Sep 17 00:00:00 2001
From: Trevor James Smith <10819524+Zeitsperre@users.noreply.github.com>
Date: Mon, 4 Nov 2024 16:20:08 -0500
Subject: [PATCH] audit ports

---
 .github/workflows/publish-pypi.yml | 18 +++++++++---------
 .github/workflows/tag-testpypi.yml | 18 +++++++++---------
 2 files changed, 18 insertions(+), 18 deletions(-)

diff --git a/.github/workflows/publish-pypi.yml b/.github/workflows/publish-pypi.yml
index 67636f22..6a2790b8 100644
--- a/.github/workflows/publish-pypi.yml
+++ b/.github/workflows/publish-pypi.yml
@@ -20,15 +20,15 @@ jobs:
       - name: Harden Runner
         uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
         with:
-          disable-sudo: true
-          egress-policy: block
-          allowed-endpoints: >
-            files.pythonhosted.org:443
-            fulcio.sigstore.dev:443
-            github.com:443
-            pypi.org:443
-            tuf-repo-cdn.sigstore.dev:443
-            upload.pypi.org:443
+#          disable-sudo: true
+          egress-policy: audit
+#          allowed-endpoints: >
+#            files.pythonhosted.org:443
+#            fulcio.sigstore.dev:443
+#            github.com:443
+#            pypi.org:443
+#            tuf-repo-cdn.sigstore.dev:443
+#            upload.pypi.org:443
       - name: Checkout Repository
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       - name: Set up Python3
diff --git a/.github/workflows/tag-testpypi.yml b/.github/workflows/tag-testpypi.yml
index 31884c07..f0bba0f6 100644
--- a/.github/workflows/tag-testpypi.yml
+++ b/.github/workflows/tag-testpypi.yml
@@ -48,15 +48,15 @@ jobs:
       - name: Harden Runner
         uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
         with:
-          disable-sudo: true
-          egress-policy: block
-          allowed-endpoints: >
-            files.pythonhosted.org:443
-            fulcio.sigstore.dev:443
-            github.com:443
-            pypi.org:443
-            test.pypi.org:443
-            tuf-repo-cdn.sigstore.dev:443
+#          disable-sudo: true
+          egress-policy: audit
+#          allowed-endpoints: >
+#            files.pythonhosted.org:443
+#            fulcio.sigstore.dev:443
+#            github.com:443
+#            pypi.org:443
+#            test.pypi.org:443
+#            tuf-repo-cdn.sigstore.dev:443
       - name: Checkout Repository
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       - name: Set up Python3