From 524dc3921506e07d1b932f68191da865089fdbfd Mon Sep 17 00:00:00 2001
From: Alexey Pustovalov <alexey.pustovalov@zabbix.com>
Date: Fri, 9 Feb 2024 03:12:25 +0900
Subject: [PATCH] Prepare universal workflow

---
 .github/workflows/images_build.yml | 27 +--------------------------
 1 file changed, 1 insertion(+), 26 deletions(-)

diff --git a/.github/workflows/images_build.yml b/.github/workflows/images_build.yml
index cd8f8e933..8f9830188 100644
--- a/.github/workflows/images_build.yml
+++ b/.github/workflows/images_build.yml
@@ -462,8 +462,7 @@ jobs:
     permissions:
       contents: read
     steps:
-      - name: Block egress traffic (alpine)
-        if: ${{ matrix.os == 'alpine' }}
+      - name: Block egress traffic
         uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0
         with:
           disable-sudo: true
@@ -480,14 +479,6 @@ jobs:
             objects.githubusercontent.com:443
             tuf-repo-cdn.sigstore.dev:443
             rekor.sigstore.dev:443
-
-      - name: Block egress traffic (centos)
-        if: ${{ matrix.os == 'centos' }}
-        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0
-        with:
-          disable-sudo: true
-          egress-policy: block
-          allowed-endpoints: >
             api.github.com:443
             atl.mirrors.knownhost.com:443
             atl.mirrors.knownhost.com:80
@@ -559,14 +550,6 @@ jobs:
             objects.githubusercontent.com:443
             tuf-repo-cdn.sigstore.dev:443
             rekor.sigstore.dev:443
-
-      - name: Block egress traffic (ol)
-        if: ${{ matrix.os == 'ol' }}
-        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0
-        with:
-          disable-sudo: true
-          egress-policy: block
-          allowed-endpoints: >
             api.github.com:443
             auth.docker.io:443
             github.com:443
@@ -578,14 +561,6 @@ jobs:
             objects.githubusercontent.com:443
             tuf-repo-cdn.sigstore.dev:443
             rekor.sigstore.dev:443
-
-      - name: Block egress traffic (ubuntu)
-        if: ${{ matrix.os == 'ubuntu' }}
-        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0
-        with:
-          disable-sudo: true
-          egress-policy: block
-          allowed-endpoints: >
             api.github.com:443
             archive.ubuntu.com:80
             auth.docker.io:443