chore(deps): bump the development-dependencies group with 3 updates

dependabot[bot] · github-actions[bot] · commit 9bac24e97f84 · 2025-11-29T07:26:40.000Z
Bumps the development-dependencies group with 3 updates: [github/codeql-action](https://github.com/github/codeql-action), [github/contributors](https://github.com/github/contributors) and [go-openapi/gh-actions](https://github.com/go-openapi/gh-actions). Updates `github/codeql-action` from 4.31.4 to 4.31.5 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@e12f017...fdbfb4d) Updates `github/contributors` from 1.7.5 to 1.7.6 - [Release notes](https://github.com/github/contributors/releases) - [Commits](github-community-projects/contributors@8b75869...abf3681) Updates `go-openapi/gh-actions` from 0.0.2 to 0.0.3 - [Release notes](https://github.com/go-openapi/gh-actions/releases) - [Changelog](https://github.com/go-openapi/gh-actions/blob/master/release_tracker.go) - [Commits](go-openapi/gh-actions@b54cc4e...2c8f815) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.31.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: development-dependencies - dependency-name: github/contributors dependency-version: 1.7.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: development-dependencies - dependency-name: go-openapi/gh-actions dependency-version: 0.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: development-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
@@ -33,9 +33,9 @@ jobs:
     -
       # Initializes the CodeQL tools for scanning.
       name: Initialize CodeQL
-      uses: github/codeql-action/init@e12f0178983d466f2f6028f5cc7a6d786fd97f4b # v4.31.4
+      uses: github/codeql-action/init@fdbfb4d2750291e159f0156def62b853c2798ca2 # v4.31.5
       with:
         languages: ${{ matrix.language }}
     -
       name: Analyze ${{ matrix.language }}
-      uses: github/codeql-action/analyze@e12f0178983d466f2f6028f5cc7a6d786fd97f4b # v4.31.4
+      uses: github/codeql-action/analyze@fdbfb4d2750291e159f0156def62b853c2798ca2 # v4.31.5
diff --git a/.github/workflows/contributors.yml b/.github/workflows/contributors.yml
@@ -22,7 +22,7 @@ jobs:
       uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
     -
       name: Identify all-time contributors to this repository
-      uses: github/contributors@8b7586939baa0af4e801dbd22c88adf6e0db8915 # v1.7.5
+      uses: github/contributors@abf36819e840f6e8056dcd40d33003ce7c4bc8dd # v1.7.6
       env:
         GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         REPOSITORY:  ${{ github.repository }}
diff --git a/.github/workflows/go-test.yml b/.github/workflows/go-test.yml
@@ -53,7 +53,7 @@ jobs:
           cache: true
       -
         name: Install gotestsum
-        uses: go-openapi/gh-actions/install/gotestsum@b54cc4ecd2b7e4e255a89c1e8ae71eff84698e1c
+        uses: go-openapi/gh-actions/install/gotestsum@2c8f8152814933c4cead92a51558699238ee9565
       -
         name: Run unit tests
         shell: bash
@@ -153,7 +153,7 @@ jobs:
           path: reports/
       -
         name: Install go-junit-report
-        uses: go-openapi/gh-actions/install/go-junit-report@b54cc4ecd2b7e4e255a89c1e8ae71eff84698e1c
+        uses: go-openapi/gh-actions/install/go-junit-report@2c8f8152814933c4cead92a51558699238ee9565
       -
         name: Convert test reports to a merged JUnit XML
         # NOTE: codecov test reports only support JUnit format at this moment. See https://docs.codecov.com/docs/test-analytics.
@@ -184,7 +184,7 @@ jobs:
           cache: true
       -
         name: Install go-ctrf-json-reporter
-        uses: go-openapi/gh-actions/install/go-ctrf-json-reporter@b54cc4ecd2b7e4e255a89c1e8ae71eff84698e1c
+        uses: go-openapi/gh-actions/install/go-ctrf-json-reporter@2c8f8152814933c4cead92a51558699238ee9565
       -
         name: Convert test reports to CTRF JSON
         # description: |
diff --git a/.github/workflows/scanner.yml b/.github/workflows/scanner.yml
@@ -43,7 +43,7 @@ jobs:
           exit-code: 0
       -
         name: Upload trivy findings to code scanning dashboard
-        uses: github/codeql-action/upload-sarif@e12f0178983d466f2f6028f5cc7a6d786fd97f4b # v4.31.4
+        uses: github/codeql-action/upload-sarif@fdbfb4d2750291e159f0156def62b853c2798ca2 # v4.31.5
         with:
           category: trivy
           sarif_file: trivy-code-report.sarif
@@ -63,7 +63,7 @@ jobs:
           output-file: govulnscan-report.sarif
       -
         name: Upload govulnscan findings to code scanning dashboard
-        uses: github/codeql-action/upload-sarif@e12f0178983d466f2f6028f5cc7a6d786fd97f4b # v4.31.4
+        uses: github/codeql-action/upload-sarif@fdbfb4d2750291e159f0156def62b853c2798ca2 # v4.31.5
         with:
           category: govulnscan
           sarif_file: govulnscan-report.sarif

Original file line number	Diff line number	Diff line change
`@@ -33,9 +33,9 @@ jobs:`
`33`	`33`	`-`
`34`	`34`	`# Initializes the CodeQL tools for scanning.`
`35`	`35`	`name: Initialize CodeQL`
`36`		`- uses: github/codeql-action/init@e12f0178983d466f2f6028f5cc7a6d786fd97f4b # v4.31.4`
	`36`	`+ uses: github/codeql-action/init@fdbfb4d2750291e159f0156def62b853c2798ca2 # v4.31.5`
`37`	`37`	`with:`
`38`	`38`	`languages: ${{ matrix.language }}`
`39`	`39`	`-`
`40`	`40`	`name: Analyze ${{ matrix.language }}`
`41`		`- uses: github/codeql-action/analyze@e12f0178983d466f2f6028f5cc7a6d786fd97f4b # v4.31.4`
	`41`	`+ uses: github/codeql-action/analyze@fdbfb4d2750291e159f0156def62b853c2798ca2 # v4.31.5`
Original file line number	Diff line number	Diff line change
`@@ -22,7 +22,7 @@ jobs:`
`22`	`22`	`uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0`
`23`	`23`	`-`
`24`	`24`	`name: Identify all-time contributors to this repository`
`25`		`- uses: github/contributors@8b7586939baa0af4e801dbd22c88adf6e0db8915 # v1.7.5`
	`25`	`+ uses: github/contributors@abf36819e840f6e8056dcd40d33003ce7c4bc8dd # v1.7.6`
`26`	`26`	`env:`
`27`	`27`	`GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}`
`28`	`28`	`REPOSITORY: ${{ github.repository }}`
Original file line number	Diff line number	Diff line change
`@@ -53,7 +53,7 @@ jobs:`
`53`	`53`	`cache: true`
`54`	`54`	`-`
`55`	`55`	`name: Install gotestsum`
`56`		`- uses: go-openapi/gh-actions/install/gotestsum@b54cc4ecd2b7e4e255a89c1e8ae71eff84698e1c`
	`56`	`+ uses: go-openapi/gh-actions/install/gotestsum@2c8f8152814933c4cead92a51558699238ee9565`
`57`	`57`	`-`
`58`	`58`	`name: Run unit tests`
`59`	`59`	`shell: bash`
`@@ -153,7 +153,7 @@ jobs:`
`153`	`153`	`path: reports/`
`154`	`154`	`-`
`155`	`155`	`name: Install go-junit-report`
`156`		`- uses: go-openapi/gh-actions/install/go-junit-report@b54cc4ecd2b7e4e255a89c1e8ae71eff84698e1c`
	`156`	`+ uses: go-openapi/gh-actions/install/go-junit-report@2c8f8152814933c4cead92a51558699238ee9565`
`157`	`157`	`-`
`158`	`158`	`name: Convert test reports to a merged JUnit XML`
`159`	`159`	`# NOTE: codecov test reports only support JUnit format at this moment. See https://docs.codecov.com/docs/test-analytics.`
`@@ -184,7 +184,7 @@ jobs:`
`184`	`184`	`cache: true`
`185`	`185`	`-`
`186`	`186`	`name: Install go-ctrf-json-reporter`
`187`		`- uses: go-openapi/gh-actions/install/go-ctrf-json-reporter@b54cc4ecd2b7e4e255a89c1e8ae71eff84698e1c`
	`187`	`+ uses: go-openapi/gh-actions/install/go-ctrf-json-reporter@2c8f8152814933c4cead92a51558699238ee9565`
`188`	`188`	`-`
`189`	`189`	`name: Convert test reports to CTRF JSON`
`190`	`190`	`# description: \|`