ci(workflow): add step-security - harden runner & update actions version - v4 to v6

[DAShaikh10]

Description

Primary

Add Step-Security harden runner to audit network operations and strengthen the security of GHA workflows.

Read more: https://github.com/marketplace/actions/harden-runner

Secondary

Update the GHA actions version from v4 to v6 (latest).

Task

• Update GHA lint.yml workflow.
• Update GHA actions version from v4 to v6.
• Run workflow locally before creating PR.

Ref: https://github.com/DAShaikh10/syncup/actions/runs/21564293257/job/62133188660

Summary by CodeRabbit

• Chores
  • Enhanced CI/CD pipeline security with additional runtime hardening.
  • Updated build workflow dependencies to latest stable versions.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[coderabbitai]

📝 Walkthrough

Walkthrough

The lint workflow file was updated to include a Harden Runner security step and to upgrade GitHub Actions dependencies from version 4 to version 6 for checkout and setup-node actions.

Changes

Cohort / File(s)	Summary
Workflow Configuration .github/workflows/lint.yml	Added Harden Runner step with egress audit policy; upgraded actions/checkout and actions/setup-node to v6.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~8 minutes

Poem

🐰 A hop through the workflow so neat,
Security guards make safety complete,
Actions updated with version six's might,
Harden and checkout, all snug and tight,
Our CI now stands with defensive delight! 🔒

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately describes the two main changes: adding StepSecurity Harden Runner and updating GitHub Actions from v4 to v6 in the workflow file.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[DAShaikh10]

Hi @Zafar7645,

In support of your work, I would like to make a small contribution, adding step-security harden runner auditing to strengthen your GHA workflow network-bound operations, and additionally update GHA actions to their latest stable version.

Hope it helps, have a good day!

Best,

[Zafar7645]

@DAShaikh10 Fantastic addition! Thank you so much for strengthening the runner security by adding network monitoring and audit report for the same. Thank you for updating to the latest versions as well! Looking forward to more such valuable contributions. Love! Love! Love! ❤️