chore(deps): bump CI GitHub Actions dependencies

[ocean]

Summary

Merges four Dependabot CI action version bumps from dev:

• actions/cache 5.0.3 → 5.0.4 — security patches for minimatch (ReDoS fix), undici (WebSocket decompression bomb + header validation), and fast-xml-parser; applied across all 12 cache steps in ci.yml
• actions/upload-artifact 7.0.0 → 7.0.1 — patch update in release.yml
• philss/rustler-precompiled-action 1.1.4 → 1.1.5 — adds support for more Apple targets (no longer relies solely on "darwin" in the target name); fixes NodeJS deprecation warnings by updating the bundled giantswarm/install-binary-action to v4; in release.yml
• zizmorcore/zizmor-action 0.5.2 → 0.5.3 — patch update in zizmor.yml

No library code, test, or documentation changes. All changes are pinned to their full commit SHA as per existing convention.

Test plan

• CI passes on this PR
• No changes to mix.exs, Rust deps, or application code

Summary by CodeRabbit

• Chores
  • Updated GitHub Actions workflow dependencies to newer versions, including CI caching tools and build/deployment actions for improved tooling performance and reliability.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 91b96cb7-2093-4464-be80-5c8e38351212

📥 Commits

Reviewing files that changed from the base of the PR and between 6a7813c and 5c93005.

📒 Files selected for processing (3)

• .github/workflows/ci.yml
• .github/workflows/release.yml
• .github/workflows/zizmor.yml

---

Walkthrough

This pull request updates pinned versions of GitHub Actions dependencies across three workflow files. The actions/cache action is upgraded to v5.0.4 in all CI job caching steps, rustler-precompiled-action moves to v1.1.5 in the release workflow, and zizmor-action is bumped to v0.5.3 for security scanning.

Changes

Workflow Action Dependency Updates

Layer / File(s)	Summary
CI Cache Action Upgrade .github/workflows/ci.yml	actions/cache updated to v5.0.4 across 11 caching steps in Rust checks, Rust fuzz, Elixir (latest), Elixir (compatibility), integration-test, and turso-remote-tests jobs.
Release Workflow Action Pins .github/workflows/release.yml	philss/rustler-precompiled-action pinned to v1.1.5 commit; actions/upload-artifact repinned to newer v7 commit.
Security Scanning Action Upgrade .github/workflows/zizmor.yml	zizmorcore/zizmor-action updated to v0.5.3.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

Possibly related PRs

• ocean/ecto_libsql#92: Both PRs modify the CI workflow's caching steps in .github/workflows/ci.yml, though this PR focuses on action version bumps whilst the other adjusts cache keys and Elixir/Erlang matrices.

Poem

🐰 A rabbit hops through workflows bright,
Updating actions, keeping things right,
Cache and rustler dance in new versions,
Security scans make careful incursions,
All pinned and safe, the CI runs true! ✨

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The pull request title 'chore(deps): bump CI GitHub Actions dependencies' accurately summarises the main change: updating CI GitHub Actions dependencies across multiple workflow files.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch dev

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}