meta: bump step-security/harden-runner from 2.5.0 to 2.5.1

Created by: dependabot[bot]

Bumps step-security/harden-runner from 2.5.0 to 2.5.1.

Release notes

Sourced from step-security/harden-runner's releases.

v2.5.1

What's Changed

• Updated default allowed endpoints to include *.actions.githubusercontent.com. GitHub Actions recently started making calls to additional sub-domains for this domain. Please update to this latest version of harden-runner to allow these new endpoints.
• Update README.md by @​varunsh-coder in step-security/harden-runner#326
• Bump step-security/harden-runner from 2.4.1 to 2.5.0 by @​dependabot in step-security/harden-runner#327

Full Changelog: https://github.com/step-security/harden-runner/compare/v2...v2.5.1

Commits

• 8ca2b8b Release v2.5.1 (#332)
• 9768986 Merge pull request #327 from step-security/dependabot/github_actions/step-sec...
• 4735c31 Bump step-security/harden-runner from 2.4.1 to 2.5.0
• 2bd96dc Merge pull request #326 from step-security/varunsh-coder-patch-1
• 781663b Update README.md
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Refs: https://github.com/step-security/harden-runner/commit/8ca2b8b2ece13480cda6dacd3511b49857a23c09