Bump 1password/load-secrets-action from 2.0.0 to 3.0.0

[dependabot]

Bumps 1password/load-secrets-action from 2.0.0 to 3.0.0.

Release notes

Sourced from 1password/load-secrets-action's releases.

v3.0.0

What's Changed

🔴 Breaking change

• Set export-env input to false by default by @​volodymyrZotov in 1Password/load-secrets-action#114 If you want export secrets as env variables you should update your workflows and explicitly set export-env: true aka

      - name: Load secret
        uses: 1password/load-secrets-action@v3
        with:
          # Export loaded secrets as environment variables
          export-env: true
        env:
          OP_SERVICE_ACCOUNT_TOKEN: ${{ secrets.OP_SERVICE_ACCOUNT_TOKEN }}
          SECRET: op://app-cicd/hello-world/secret
  - name: Print masked secret
    run: 'echo "Secret: $SECRET"'
    # Prints: Secret: ***

🚀 Features

• Use op cli installer to enable Windows support by @​volodymyrZotov in 1Password/load-secrets-action#109
• Set default for version input by @​volodymyrZotov in 1Password/load-secrets-action#112

🔒 Security

• Use of Insufficiently Random Values in undici {#103}
• undici Denial of Service attack via bad certificate data {#103}

Full Changelog: 1Password/load-secrets-action@v2...v3.0.0

Commits

• 13f58ee Merge pull request #110 from 1Password/vzt/prepare-release-v3
• f9847b3 Merge branch 'main' into vzt/prepare-release-v3
• 438a012 Merge pull request #114 from 1Password/vzt/change-default-export-env
• ba891d4 Update readme
• 909c7e0 Fix formatting
• 1c443d8 Update README.md to show examples of using as step outputs and env vars
• 867fee7 Set export-env input to false by default
• ee4b491 Make latest build
• 13f1107 Merge branch 'main' into vzt/prepare-release-v3
• 7914f19 Merge pull request #113 from 1Password/vzt/bump-op-cli-installer
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)