deps: Update dependencies for github

.github/workflows/codeql.yml

@@ -42,20 +42,20 @@ jobs:
 
  steps:
  - name: Checkout repository
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+ uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
  # Initializes the CodeQL tools for scanning.
  - name: Initialize CodeQL
- uses: github/codeql-action/init@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10
+ uses: github/codeql-action/init@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12
  with:
  languages: ${{ matrix.language }}
 
  # Autobuild attempts to build any compiled languages (C/C++, C#, Go, or Java).
  # If this step fails, then you should remove it and run the build manually
  - name: Autobuild
- uses: github/codeql-action/autobuild@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10
+ uses: github/codeql-action/autobuild@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12
 
  - name: Perform CodeQL Analysis
- uses: github/codeql-action/analyze@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10
+ uses: github/codeql-action/analyze@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12
  with:
  category: "/language:${{matrix.language}}"

.github/workflows/coverage.yml

@@ -24,7 +24,7 @@ jobs:
  runs-on: ubuntu-latest
  steps:
  - name: Checkout base branch
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+ uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
  with:
  ref: ${{ github.base_ref }}
 
@@ -42,7 +42,7 @@ jobs:
  echo "CUR_COVER=$CUR_COVER" >> $GITHUB_ENV
 
  - name: Checkout PR branch
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+ uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
  with:
  ref: ${{ github.event.pull_request.head.sha }}
  repository: ${{ github.event.pull_request.head.repo.full_name }}

.github/workflows/labels.yml

@@ -28,7 +28,7 @@ jobs:
  issues: write
  pull-requests: write
  steps:
- - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+ - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
  - uses: micnncim/action-label-syncer@3abd5ab72fda571e69fffd97bd4e0033dd5f495c # v1.3.0
  env:
  GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

.github/workflows/lint.yml

@@ -26,7 +26,7 @@ jobs:
  runs-on: ubuntu-latest
  steps:
  - name: Checkout code
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+ uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
  - name: Use Nodejs v18.x
  uses: actions/setup-node@0a44ba7841725637a19e28fa30b79a866c81b0a6 # v4.0.4

.github/workflows/scorecard.yml

@@ -35,7 +35,7 @@ jobs:
 
  steps:
  - name: "Checkout code"
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+ uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
  with:
  persist-credentials: false
 
@@ -57,14 +57,14 @@ jobs:
  # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
  # format to the repository Actions tab.
  - name: "Upload artifact"
- uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0
+ uses: actions/upload-artifact@84480863f228bb9747b473957fcc9e309aa96097 # v4.4.2
  with:
  name: SARIF file
  path: results.sarif
  retention-days: 5
 
  # Upload the results to GitHub's code scanning dashboard.
  - name: "Upload to code-scanning"
- uses: github/codeql-action/upload-sarif@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10
+ uses: github/codeql-action/upload-sarif@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12
  with:
  sarif_file: resultsFiltered.sarif

.github/workflows/tests.yml

@@ -49,7 +49,7 @@ jobs:
 
  steps:
  - name: Checkout code
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+ uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
  - name: Use Nodejs ${{ matrix.node-version }}
  uses: actions/setup-node@0a44ba7841725637a19e28fa30b79a866c81b0a6 # v4.0.4
@@ -59,7 +59,7 @@ jobs:
  - id: auth
  name: Authenticate to Google Cloud
  if: ${{ github.event_name == 'schedule' || github.event_name == 'push' }}
- uses: google-github-actions/auth@62cf5bd3e4211a0a0b51f2c6d6a37129d828611d # v2.1.5
+ uses: google-github-actions/auth@8254fb75a33b976a221574d287e93919e6a36f70 # v2.1.6
  with:
  workload_identity_provider: ${{ vars.PROVIDER_NAME }}
  service_account: ${{ vars.SERVICE_ACCOUNT }}
@@ -143,7 +143,7 @@ jobs:
 
  steps:
  - name: Checkout Repository
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+ uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
  - name: Use Node.js ${{ matrix.node-version }}
  uses: actions/setup-node@0a44ba7841725637a19e28fa30b79a866c81b0a6 # v4.0.4
@@ -158,7 +158,7 @@ jobs:
 
  - id: auth
  name: Authenticate to Google Cloud
- uses: google-github-actions/auth@62cf5bd3e4211a0a0b51f2c6d6a37129d828611d # v2.1.5
+ uses: google-github-actions/auth@8254fb75a33b976a221574d287e93919e6a36f70 # v2.1.6
  with:
  workload_identity_provider: ${{ vars.PROVIDER_NAME }}
  service_account: ${{ vars.SERVICE_ACCOUNT }}
@@ -286,7 +286,7 @@ jobs:
 
  steps:
  - name: Checkout Repository
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+ uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
  - name: Setup Node.js
  uses: actions/setup-node@0a44ba7841725637a19e28fa30b79a866c81b0a6 # v4.0.4
@@ -311,7 +311,7 @@ jobs:
 
  - id: auth
  name: Authenticate to Google Cloud
- uses: google-github-actions/auth@62cf5bd3e4211a0a0b51f2c6d6a37129d828611d # v2.1.5
+ uses: google-github-actions/auth@8254fb75a33b976a221574d287e93919e6a36f70 # v2.1.6
  with:
  workload_identity_provider: ${{ vars.PROVIDER_NAME }}
  service_account: ${{ vars.SERVICE_ACCOUNT }}