chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
docker.io/library/python	final	patch	3.14.5-slim → 3.14.6-slim
gradle/actions	action	minor	v6.1.0 → v6.2.0

---

Release Notes

gradle/actions (gradle/actions)

v6.2.0

Compare Source

v6.1.1

Compare Source

This release updates various dependency versions, resolving several reported security vulnerabilities.
No functional changes are included

What's Changed

• Bump Gradle Wrapper from 9.4.1 to 9.5.1 in /sources/test/init-scripts by @​bot-githubaction in #​961
• Bump Gradle Wrapper from 9.4.1 to 9.5.1 in /.github/workflow-samples/gradle-plugin by @​bot-githubaction in #​962
• Bump Gradle Wrapper from 9.4.1 to 9.5.1 in /.github/workflow-samples/groovy-dsl by @​bot-githubaction in #​963
• Bump Gradle Wrapper from 9.4.1 to 9.5.1 in /.github/workflow-samples/java-toolchain by @​bot-githubaction in #​964
• Bump Gradle Wrapper from 9.4.1 to 9.5.1 in /.github/workflow-samples/kotlin-dsl by @​bot-githubaction in #​965
• Update known wrapper checksums by @​github-actions[bot] in #​937
• Bump the github-actions group across 2 directories with 8 updates by @​dependabot[bot] in #​976
• Bump the npm-dependencies group across 1 directory with 14 updates by @​dependabot[bot] in #​970
• Bump references to Develocity Gradle plugin from 4.4.0 to 4.4.2 by @​bot-githubaction in #​973
• Bump the npm-dependencies group in /sources with 5 updates by @​dependabot[bot] in #​977
• Update @​actions/cache and @​actions/artifact, stop ignoring them in Dependabot by @​bigdaz in #​978
• Resolve npm security vulnerabilities via dependency overrides by @​bigdaz in #​980

Full Changelog: gradle/actions@v6.1.0...v6.1.1

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • Between 12:00 AM and 03:59 AM, only on Monday (* 0-3 * * 1)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

Trivy image scan report

ghcr.io/chgl/github-reusable-workflow-without-test-image:pr-249 (debian 13.5)

No Vulnerabilities found

No Misconfigurations found

Python

No Vulnerabilities found

No Misconfigurations found

[github-actions]

Trivy image scan report

ghcr.io/chgl/github-reusable-workflow-with-fixed-image-tags:v1.2.3-beta.123 (debian 13.5)

No Vulnerabilities found

No Misconfigurations found

Python

No Vulnerabilities found

No Misconfigurations found

[github-actions]

Trivy image scan report

ghcr.io/chgl/github-reusable-workflow:pr-249 (debian 13.5)

No Vulnerabilities found

No Misconfigurations found

Python

No Vulnerabilities found

No Misconfigurations found

[github-actions]

✅MegaLinter analysis: Success

Descriptor	Linter	Files	Fixed	Errors	Warnings	Elapsed time
✅ ACTION	actionlint	4		0	0	0.27s
✅ ACTION	zizmor	4		0	0	4.38s
✅ COPYPASTE	jscpd	yes		no	no	1.32s
✅ DOCKERFILE	hadolint	1		0	0	0.58s
✅ JSON	jsonlint	3		0	0	0.12s
✅ JSON	prettier	3		0	0	0.66s
✅ JSON	v8r	3		0	0	2.88s
✅ MARKDOWN	markdownlint	1		0	0	0.97s
✅ MARKDOWN	markdown-table-formatter	1		0	0	0.5s
✅ PYTHON	bandit	1		0	0	2.69s
✅ PYTHON	black	1		0	0	1.32s
✅ PYTHON	flake8	1		0	0	1.0s
✅ PYTHON	isort	1		0	0	0.3s
✅ PYTHON	mypy	1		0	0	4.72s
✅ PYTHON	pylint	1		0	0	4.25s
✅ PYTHON	pyright	1		0	0	2.06s
✅ PYTHON	ruff	1		0	0	0.3s
✅ REPOSITORY	checkov	yes		no	no	35.8s
✅ REPOSITORY	dustilock	yes		no	no	0.14s
✅ REPOSITORY	gitleaks	yes		no	no	1.94s
✅ REPOSITORY	git_diff	yes		no	no	0.01s
✅ REPOSITORY	grype	yes		no	no	66.71s
✅ REPOSITORY	kingfisher	yes		no	no	10.58s
✅ REPOSITORY	osv-scanner	yes		no	no	0.15s
✅ REPOSITORY	secretlint	yes		no	no	1.62s
✅ REPOSITORY	syft	yes		no	no	3.91s
✅ REPOSITORY	trivy	yes		no	no	14.17s
✅ REPOSITORY	trivy-sbom	yes		no	no	0.23s
✅ REPOSITORY	trufflehog	yes		no	no	5.54s
✅ YAML	prettier	7		0	0	1.08s
✅ YAML	v8r	7		0	0	7.75s
✅ YAML	yamllint	7		0	0	1.34s

Notices

📣 MegaLinter 9.5.0 is out! Discover the new features and security recommendations in the release announcement. (Skip this info by defining SECURITY_SUGGESTIONS: false)

See detailed reports in MegaLinter artifacts

Your project could benefit from a custom flavor, which would allow you to run only the linters you need, and thus improve runtime performances. (Skip this info by defining FLAVOR_SUGGESTIONS: false)

• Documentation: Custom Flavors
• Command: npx mega-linter-runner@9.5.0 --custom-flavor-setup --custom-flavor-linters PYTHON_PYLINT,PYTHON_BLACK,PYTHON_FLAKE8,PYTHON_ISORT,PYTHON_BANDIT,PYTHON_MYPY,PYTHON_PYRIGHT,PYTHON_RUFF,ACTION_ACTIONLINT,ACTION_ZIZMOR,COPYPASTE_JSCPD,DOCKERFILE_HADOLINT,JSON_JSONLINT,JSON_V8R,JSON_PRETTIER,MARKDOWN_MARKDOWNLINT,MARKDOWN_MARKDOWN_TABLE_FORMATTER,REPOSITORY_CHECKOV,REPOSITORY_DUSTILOCK,REPOSITORY_GIT_DIFF,REPOSITORY_GITLEAKS,REPOSITORY_GRYPE,REPOSITORY_OSV_SCANNER,REPOSITORY_SECRETLINT,REPOSITORY_SYFT,REPOSITORY_TRIVY,REPOSITORY_TRIVY_SBOM,REPOSITORY_TRUFFLEHOG,REPOSITORY_KINGFISHER,YAML_PRETTIER,YAML_YAMLLINT,YAML_V8R

Show us your support by starring ⭐ the repository

[github-actions]

🎉 This PR is included in version 1.11.36 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀