build(deps): Bump the github-actions group across 1 directory with 3 updates

[dependabot[bot]]

Bumps the github-actions group with 3 updates in the /.github/workflows directory: golangci/golangci-lint-action, codecov/codecov-action and azure/setup-helm.

Updates golangci/golangci-lint-action from 3 to 6

Release notes

Sourced from golangci/golangci-lint-action's releases.

v6.0.0

What's Changed

This version removes annotations option (because it was useless), and removes the default output format (github-actions). The annotations are still produced but with another approach.

Changes

• feat: rewrite format handling by @​ldez in golangci/golangci-lint-action#1038

Dependencies

• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.7.1 to 7.8.0 by @​dependabot in golangci/golangci-lint-action#1034
• build(deps): bump @​types/node from 20.12.7 to 20.12.8 by @​dependabot in golangci/golangci-lint-action#1036
• build(deps-dev): bump @​typescript-eslint/parser from 7.7.1 to 7.8.0 by @​dependabot in golangci/golangci-lint-action#1035

Full Changelog: https://github.com/golangci/golangci-lint-action/compare/v5.3.0...v6.0.0

v5.3.0

What's Changed

Changes

• feat: uses 2 dots compare syntax for push diff by @​ldez in golangci/golangci-lint-action#1030
• feat: add option to control cache invalidation interval by @​ldez in golangci/golangci-lint-action#1031
• feat: use OS and working-directory as cache key by @​ldez in golangci/golangci-lint-action#1032
• feat: improve log about pwd/cwd by @​ldez in golangci/golangci-lint-action#1033

Full Changelog: https://github.com/golangci/golangci-lint-action/compare/v5.2.0...v5.3.0

v5.2.0

What's Changed

Changes

• feat: add an option to enable/disable annotations by @​ldez

Full Changelog: https://github.com/golangci/golangci-lint-action/compare/v5.1.0...v5.2.0

v5.1.0

What's Changed

Changes

• feat: support for pull and merge_group events with the option only-new-issues by @​ldez in golangci/golangci-lint-action#1029

Dependencies

• build(deps-dev): bump @​typescript-eslint/parser from 7.7.0 to 7.7.1 by @​dependabot in golangci/golangci-lint-action#1027
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.7.0 to 7.7.1 by @​dependabot in golangci/golangci-lint-action#1028

... (truncated)

Commits

• a4f60bb fix: use 3-dots syntax for diff on push (#1040)
• 5815a4b doc: improve readme
• 23faadf doc: improve readme
• b556f25 doc: improve readme
• 789f114 feat: rewrite format handling (#1038)
• d36b91c build(deps-dev): bump @​typescript-eslint/parser from 7.7.1 to 7.8.0 (#1035)
• a9eb115 build(deps): bump @​types/node from 20.12.7 to 20.12.8 (#1036)
• bd4fa7c build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.7.1 to 7.8.0 (#...
• 38e1018 feat: improve log about pwd/cwd (#1033)
• 21e9e6b feat: use OS and working-directory as cache key (#1032)
• Additional commits viewable in compare view

Updates codecov/codecov-action from 3 to 4

Release notes

Sourced from codecov/codecov-action's releases.

v4.0.0

v4 of the Codecov Action uses the CLI as the underlying upload. The CLI has helped to power new features including local upload, the global upload token, and new upcoming features.

Breaking Changes

• The Codecov Action runs as a node20 action due to node16 deprecation. See this post from GitHub on how to migrate.
• Tokenless uploading is unsupported. However, PRs made from forks to the upstream public repos will support tokenless (e.g. contributors to OS projects do not need the upstream repo's Codecov token). This doc shows instructions on how to add the Codecov token.
• OS platforms have been added, though some may not be automatically detected. To see a list of platforms, see our CLI download page
• Various arguments to the Action have been changed. Please be aware that the arguments match with the CLI's needs

v3 versions and below will not have access to CLI features (e.g. global upload token, ATS).

What's Changed

• build(deps): bump openpgp from 5.8.0 to 5.9.0 by @​dependabot in codecov/codecov-action#985
• build(deps): bump actions/checkout from 3.0.0 to 3.5.3 by @​dependabot in codecov/codecov-action#1000
• build(deps): bump ossf/scorecard-action from 2.1.3 to 2.2.0 by @​dependabot in codecov/codecov-action#1006
• build(deps): bump tough-cookie from 4.0.0 to 4.1.3 by @​dependabot in codecov/codecov-action#1013
• build(deps-dev): bump word-wrap from 1.2.3 to 1.2.4 by @​dependabot in codecov/codecov-action#1024
• build(deps): bump node-fetch from 3.3.1 to 3.3.2 by @​dependabot in codecov/codecov-action#1031
• build(deps-dev): bump @​types/node from 20.1.4 to 20.4.5 by @​dependabot in codecov/codecov-action#1032
• build(deps): bump github/codeql-action from 1.0.26 to 2.21.2 by @​dependabot in codecov/codecov-action#1033
• build commit,report and upload args based on codecovcli by @​dana-yaish in codecov/codecov-action#943
• build(deps-dev): bump @​types/node from 20.4.5 to 20.5.3 by @​dependabot in codecov/codecov-action#1055
• build(deps): bump github/codeql-action from 2.21.2 to 2.21.4 by @​dependabot in codecov/codecov-action#1051
• build(deps-dev): bump @​types/node from 20.5.3 to 20.5.4 by @​dependabot in codecov/codecov-action#1058
• chore(deps): update outdated deps by @​thomasrockhu-codecov in codecov/codecov-action#1059
• build(deps-dev): bump @​types/node from 20.5.4 to 20.5.6 by @​dependabot in codecov/codecov-action#1060
• build(deps-dev): bump @​typescript-eslint/parser from 6.4.1 to 6.5.0 by @​dependabot in codecov/codecov-action#1065
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 6.4.1 to 6.5.0 by @​dependabot in codecov/codecov-action#1064
• build(deps): bump actions/checkout from 3.5.3 to 3.6.0 by @​dependabot in codecov/codecov-action#1063
• build(deps-dev): bump eslint from 8.47.0 to 8.48.0 by @​dependabot in codecov/codecov-action#1061
• build(deps-dev): bump @​types/node from 20.5.6 to 20.5.7 by @​dependabot in codecov/codecov-action#1062
• build(deps): bump openpgp from 5.9.0 to 5.10.1 by @​dependabot in codecov/codecov-action#1066
• build(deps-dev): bump @​types/node from 20.5.7 to 20.5.9 by @​dependabot in codecov/codecov-action#1070
• build(deps): bump github/codeql-action from 2.21.4 to 2.21.5 by @​dependabot in codecov/codecov-action#1069
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 6.5.0 to 6.6.0 by @​dependabot in codecov/codecov-action#1072
• Update README.md by @​thomasrockhu-codecov in codecov/codecov-action#1073
• build(deps-dev): bump @​typescript-eslint/parser from 6.5.0 to 6.6.0 by @​dependabot in codecov/codecov-action#1071
• build(deps-dev): bump @​vercel/ncc from 0.36.1 to 0.38.0 by @​dependabot in codecov/codecov-action#1074
• build(deps): bump @​actions/core from 1.10.0 to 1.10.1 by @​dependabot in codecov/codecov-action#1081
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 6.6.0 to 6.7.0 by @​dependabot in codecov/codecov-action#1080
• build(deps): bump actions/checkout from 3.6.0 to 4.0.0 by @​dependabot in codecov/codecov-action#1078
• build(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3 by @​dependabot in codecov/codecov-action#1077
• build(deps-dev): bump @​types/node from 20.5.9 to 20.6.0 by @​dependabot in codecov/codecov-action#1075
• build(deps-dev): bump @​typescript-eslint/parser from 6.6.0 to 6.7.0 by @​dependabot in codecov/codecov-action#1079
• build(deps-dev): bump eslint from 8.48.0 to 8.49.0 by @​dependabot in codecov/codecov-action#1076
• use cli instead of node uploader by @​dana-yaish in codecov/codecov-action#1068
• chore(release): 4.0.0-beta.1 by @​thomasrockhu-codecov in codecov/codecov-action#1084
• not adding -n if empty to do-upload command by @​dana-yaish in codecov/codecov-action#1085
• 4.0.0-beta.2 by @​thomasrockhu-codecov in codecov/codecov-action#1086

... (truncated)

Changelog

Sourced from codecov/codecov-action's changelog.

4.0.0-beta.2

Fixes

• #1085 not adding -n if empty to do-upload command

4.0.0-beta.1

v4 represents a move from the universal uploader to the Codecov CLI. Although this will unlock new features for our users, the CLI is not yet at feature parity with the universal uploader.

Breaking Changes

• No current support for aarch64 and alpine architectures.
• Tokenless uploading is unsuported
• Various arguments to the Action have been removed

3.1.4

Fixes

• #967 Fix typo in README.md
• #971 fix: add back in working dir
• #969 fix: CLI option names for uploader

Dependencies

• #970 build(deps-dev): bump @​types/node from 18.15.12 to 18.16.3
• #979 build(deps-dev): bump @​types/node from 20.1.0 to 20.1.2
• #981 build(deps-dev): bump @​types/node from 20.1.2 to 20.1.4

3.1.3

Fixes

• #960 fix: allow for aarch64 build

Dependencies

• #957 build(deps-dev): bump jest-junit from 15.0.0 to 16.0.0
• #958 build(deps): bump openpgp from 5.7.0 to 5.8.0
• #959 build(deps-dev): bump @​types/node from 18.15.10 to 18.15.12

3.1.2

Fixes

• #718 Update README.md
• #851 Remove unsupported path_to_write_report argument
• #898 codeql-analysis.yml
• #901 Update README to contain correct information - inputs and negate feature
• #955 fix: add in all the extra arguments for uploader

Dependencies

• #819 build(deps): bump openpgp from 5.4.0 to 5.5.0
• #835 build(deps): bump node-fetch from 3.2.4 to 3.2.10
• #840 build(deps): bump ossf/scorecard-action from 1.1.1 to 2.0.4
• #841 build(deps): bump @​actions/core from 1.9.1 to 1.10.0
• #843 build(deps): bump @​actions/github from 5.0.3 to 5.1.1
• #869 build(deps): bump node-fetch from 3.2.10 to 3.3.0
• #872 build(deps-dev): bump jest-junit from 13.2.0 to 15.0.0
• #879 build(deps): bump decode-uri-component from 0.2.0 to 0.2.2

... (truncated)

Commits

• 5ecb98a chore(release): 4.3.1. (#1405)
• 5a299d1 fix: bypass token checks for forks and OIDC (#1404)
• dad251d docs: main branch (#1396)
• e8bbe5f docs: Type Annotations (#1397)
• a6fd87f build(deps-dev): bump @​typescript-eslint/parser from 7.7.1 to 7.8.0 (#1401)
• 76c8cd6 build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.7.1 to 7.8.0 (#...
• 1290bdd style: Node Packages (#1394)
• 951ef79 build(deps): bump github/codeql-action from 3.25.1 to 3.25.3 (#1391)
• bb71c1b build(deps): bump actions/checkout from 4.1.3 to 4.1.4 (#1392)
• acc5d43 build(deps): bump actions/upload-artifact from 4.3.2 to 4.3.3 (#1393)
• Additional commits viewable in compare view

Updates azure/setup-helm from 3 to 4

Release notes

Sourced from azure/setup-helm's releases.

v4.0.0

• #121 update to node20 as node16 is deprecated

v3.5 release

Bump @​actions/core version to remove output warning.

v3.4 release

Improves the querying method to find the latest Helm release. Takes advantage of new GitHub api changes.

v3.3 release

Add token input. Needed for fetching latest

v3.1 release

Swap to GraphQL GitHub API

Changelog

Sourced from azure/setup-helm's changelog.

Change Log

[4.2.0] - 2024-04-15

• #124 Fix OS detection and download OS-native archive extension

[4.1.0] - 2024-03-01

• #130 switches to use Helm published file to read latest version instead of using GitHub releases

[4.0.0] - 2024-02-12

• #121 update to node20 as node16 is deprecated

Commits

• fe7b79c build
• df50d87 Release v4.2.0 (#134)
• 08d7123 Bump undici from 5.28.2 to 5.28.4 (#133)
• 0a0c55a Fix os detection and archive extension (#124)
• d00ce1c update to release workflow major version tag (#132)
• 4c255dd publish version 4.1.0 (#131)
• ec8dd7c switching to fetching latest version from the dedicated file (#130)
• efbd96d Fix action version in README.md (#129)
• 859dc38 v4 readme update (#127)
• 0788eb3 v4 release and required workflow updates (#125)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions