diff --git a/.github/workflows/dry_run_npm_payments_mcp.yml b/.github/workflows/dry_run_npm_payments_mcp.yml
index c6e77a2..2ccc2e9 100644
--- a/.github/workflows/dry_run_npm_payments_mcp.yml
+++ b/.github/workflows/dry_run_npm_payments_mcp.yml
@@ -22,6 +22,11 @@ jobs:
         node-version: [22]
 
     steps:
+      - name: Harden the runner (Audit all outbound calls)
+        uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
+        with:
+          egress-policy: audit
+
       - name: Checkout code
         uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
 
@@ -48,6 +53,11 @@ jobs:
     runs-on: ubuntu-latest
 
     steps:
+      - name: Harden the runner (Audit all outbound calls)
+        uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
+        with:
+          egress-policy: audit
+
       - name: Checkout code
         uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
 
diff --git a/.github/workflows/publish_npm_payments_mcp.yml b/.github/workflows/publish_npm_payments_mcp.yml
index ed53d06..adaf9aa 100644
--- a/.github/workflows/publish_npm_payments_mcp.yml
+++ b/.github/workflows/publish_npm_payments_mcp.yml
@@ -20,6 +20,11 @@ jobs:
         node-version: [22]
 
     steps:
+      - name: Harden the runner (Audit all outbound calls)
+        uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
+        with:
+          egress-policy: audit
+
       - name: Checkout code
         uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
 
@@ -47,6 +52,11 @@ jobs:
 
     environment: production
     steps:
+      - name: Harden the runner (Audit all outbound calls)
+        uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
+        with:
+          egress-policy: audit
+
       - name: Checkout code
         uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0