[StepSecurity] Apply security best practices (#4539)

Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>

.github/workflows/comment_check_amalgamation.yml

@@ -17,6 +17,11 @@ jobs:
       issues: read
       pull-requests: write
     steps:
+      - name: Harden Runner
+        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
+        with:
+          egress-policy: audit
+
       - name: 'Download artifact'
         uses: actions/github-script@98814c53be79b1d30f795b907e553d8679345975 # v6.4.0
         with: