Auth bypass in Step-security Harden-runner

CVE-2026-32946

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. In versions 2.15.1 and below, the Harden-Runner that allows bypass of the egress-policy: block network restriction using DNS queries over TCP. Egres…

EPSS: 0.001 (26.3th percentile) — read the EPSS interpretation.

Affected products

Step-security Harden-runner — versions < 2.16.0

Weakness classification (CWE)

References

https://github.com/step-security/harden-runner/security/advisories/GHSA-g699-3x6g-wm3g (x_refsource_CONFIRM)
https://github.com/step-security/harden-runner/releases/tag/v2.16.0 (x_refsource_MISC)