From b0689b48f16dc5630d9c06cd12549d86ba591126 Mon Sep 17 00:00:00 2001
From: Nathaniel Landau <nate@natelandau.com>
Date: Mon, 23 Jan 2023 00:40:22 +0000
Subject: [PATCH] ci: add allowed endpoints to harden-runner

---
 .github/workflows/pypi-release.yml | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/.github/workflows/pypi-release.yml b/.github/workflows/pypi-release.yml
index 4d8bf28..5619f3c 100644
--- a/.github/workflows/pypi-release.yml
+++ b/.github/workflows/pypi-release.yml
@@ -23,7 +23,12 @@ jobs:
                   egress-policy: block
                   disable-sudo: true
                   allowed-endpoints: >
+                      api.github.com:443
+                      files.pythonhosted.org:443
                       github.com:443
+                      install.python-poetry.org:443
+                      pypi.org:443
+                      python-poetry.org:443
                       upload.pypi.org:443
 
             - name: Checkout repository