diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 02676df0a..b183ed929 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -276,10 +276,6 @@ jobs:
     runs-on: ubuntu-latest
     container: python:3-slim
     steps:
-      - name: Harden Runner
-        uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0
-        with:
-          egress-policy: audit
       - name: Coveralls Finished
         run: |
           python -m pip install --upgrade coveralls
diff --git a/CHANGES.rst b/CHANGES.rst
index 8203e4109..f9fbddc7a 100644
--- a/CHANGES.rst
+++ b/CHANGES.rst
@@ -74,6 +74,7 @@ Internal changes
 * `black`, `isort`, and `pyupgrade` code formatters no longer target Python3.8 coding style conventions. (:pull:`1565`).
 * The GitHub Workflows now include builds to run tests against both Windows and MacOS. (:pull:`1648`).
 * `prefetch` is now available as a `tox` environment modifier in order to download the testing data before launching `pytest` (e.g. `py3x-prefetch`). This is required for running tests the first time on Windows if the testing data has not already been installed. (:pull:`1648`).
+* Removed `step-security/harden-runner` from the `finish` job as it does not work on container images lacking `sudo` access. (:pull:`1655`).
 
 v0.47.0 (2023-12-01)
 --------------------