Bump the github-actions group with 7 updates

[dependabot[bot]]

Bumps the github-actions group with 7 updates:

Package	From	To
pre-commit/action	3.0.0	3.0.1
actions/upload-artifact	4.3.0	4.3.1
actions/download-artifact	4.1.1	4.1.3
codecov/codecov-action	4.0.0	4.1.0
github/codeql-action	3.23.2	3.24.6
peter-evans/create-pull-request	6.0.0	6.0.1
ncipollo/release-action	1.13.0	1.14.0

Updates pre-commit/action from 3.0.0 to 3.0.1

Release notes

Sourced from pre-commit/action's releases.

pre-commit/action@v3.0.1

Misc

• Update actions/cache to v4
  • #190 PR by @​SukiCZ.
  • #189 issue by @​bakerkj.

Commits

• 2c7b380 v3.0.1
• 8e2deeb Merge pull request #190 from SukiCZ/upgrade-action/cache-v4
• 0dbc303 Upgrade action/cache to v4. Fixes: #189
• c7d159c Merge pull request #185 from pre-commit/asottile-patch-1
• 9dd4237 fix main badge
• 37faf8a Merge pull request #184 from pre-commit/pre-commit-ci-update-config
• 049686e [pre-commit.ci] pre-commit autoupdate
• 5f528da move back to maintenance-only
• efd3bcf Merge pull request #170 from pre-commit/pre-commit-ci-update-config
• df308c7 [pre-commit.ci] pre-commit autoupdate
• Additional commits viewable in compare view

Updates actions/upload-artifact from 4.3.0 to 4.3.1

Release notes

Sourced from actions/upload-artifact's releases.

v4.3.1

• Bump @​actions/artifacts to latest version to include updated GHES host check

Commits

• 5d5d22a Merge pull request #515 from actions/eggyhead/update-artifact-v2.1.1
• f1e993d update artifact license
• 4881bfd updating dist:
• a30777e @​eggyhead
• 3a80482 Merge pull request #511 from actions/robherley/migration-docs-typo
• 9d63e3f Merge branch 'main' into robherley/migration-docs-typo
• dfa1ab2 fix typo with v3 artifact downloads in migration guide
• d00351b Merge pull request #509 from markmssd/patch-1
• 707f5a7 Update limitation of 10 artifacts upload to 500
• See full diff in compare view

Updates actions/download-artifact from 4.1.1 to 4.1.3

Release notes

Sourced from actions/download-artifact's releases.

v4.1.3

What's Changed

• Update release-new-action-version.yml by @​konradpabjan in actions/download-artifact#292
• Update toolkit dependency with updated unzip logic by @​bethanyj28 in actions/download-artifact#299
• Update @​actions/artifact by @​bethanyj28 in actions/download-artifact#303

New Contributors

• @​bethanyj28 made their first contribution in actions/download-artifact#299

Full Changelog: https://github.com/actions/download-artifact/compare/v4...v4.1.3

v4.1.2

• Bump @​actions/artifacts to latest version to include updated GHES host check

Commits

• 87c5514 Merge pull request #303 from bethanyj28/main
• 47f9ce6 update @​actions/artifact
• 127824d Merge pull request #299 from bethanyj28/main
• 6dd49bf licensed only artifact
• f71c0e3 Revert "licensed"
• 7c63dfd licensed
• 67d37cd Update toolkit
• 3487549 Update release-new-action-version.yml (#292)
• eaceaf8 Merge pull request #291 from actions/eggyhead/update-artifact-v2.1.1
• 81eafdc update artifact license
• Additional commits viewable in compare view

Updates codecov/codecov-action from 4.0.0 to 4.1.0

Release notes

Sourced from codecov/codecov-action's releases.

v4.1.0

What's Changed

• fix: set safe directory by @​thomasrockhu-codecov in codecov/codecov-action#1304
• build(deps): bump github/codeql-action from 3.24.3 to 3.24.5 by @​dependabot in codecov/codecov-action#1306
• build(deps-dev): bump eslint from 8.56.0 to 8.57.0 by @​dependabot in codecov/codecov-action#1305
• chore(release): v4.1.0 by @​thomasrockhu-codecov in codecov/codecov-action#1307

Full Changelog: https://github.com/codecov/codecov-action/compare/v4.0.2...v4.1.0

v4.0.2

What's Changed

• Update README.md by @​thomasrockhu-codecov in codecov/codecov-action#1251
• build(deps-dev): bump @​types/jest from 29.5.11 to 29.5.12 by @​dependabot in codecov/codecov-action#1257
• build(deps): bump github/codeql-action from 3.23.2 to 3.24.0 by @​dependabot in codecov/codecov-action#1266
• Escape pipes in table of arguments by @​jwodder in codecov/codecov-action#1265
• Add link to docs on Dependabot secrets by @​ianlewis in codecov/codecov-action#1260
• fix: working-directory input for all stages by @​Bo98 in codecov/codecov-action#1272
• build(deps-dev): bump @​typescript-eslint/parser from 6.20.0 to 6.21.0 by @​dependabot in codecov/codecov-action#1271
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 6.20.0 to 6.21.0 by @​dependabot in codecov/codecov-action#1269
• build(deps): bump github/codeql-action from 3.24.0 to 3.24.3 by @​dependabot in codecov/codecov-action#1298
• Use updated syntax for GitHub Markdown notes by @​jamacku in codecov/codecov-action#1300
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 6.21.0 to 7.0.0 by @​dependabot in codecov/codecov-action#1290
• build(deps): bump actions/upload-artifact from 4.3.0 to 4.3.1 by @​dependabot in codecov/codecov-action#1286
• chore(release): bump to 4.0.2 by @​thomasrockhu-codecov in codecov/codecov-action#1302

New Contributors

• @​jwodder made their first contribution in codecov/codecov-action#1265
• @​ianlewis made their first contribution in codecov/codecov-action#1260
• @​Bo98 made their first contribution in codecov/codecov-action#1272
• @​jamacku made their first contribution in codecov/codecov-action#1300

Full Changelog: https://github.com/codecov/codecov-action/compare/v4.0.1...v4.0.2

v4.0.1

What's Changed

• Update README.md by @​thomasrockhu-codecov in codecov/codecov-action#1243
• Add all args by @​thomasrockhu-codecov in codecov/codecov-action#1245
• fix: show both token uses in readme by @​thomasrockhu-codecov in codecov/codecov-action#1250

Full Changelog: https://github.com/codecov/codecov-action/compare/v4.0.0...v4.0.1

Commits

• 54bcd87 chore(release): v4.1.0 (#1307)
• 8ba77ef build(deps-dev): bump eslint from 8.56.0 to 8.57.0 (#1305)
• c60aa80 build(deps): bump github/codeql-action from 3.24.3 to 3.24.5 (#1306)
• 2fc4847 fix: set safe directory (#1304)
• 0cfda1d chore(release): bump to 4.0.2 (#1302)
• 7d3a55e build(deps): bump actions/upload-artifact from 4.3.0 to 4.3.1 (#1286)
• fe84a0b build(deps-dev): bump @​typescript-eslint/eslint-plugin from 6.21.0 to 7.0.0 (...
• e12c940 Use updated syntax for GitHub Markdown notes (#1300)
• ef7f8a5 build(deps): bump github/codeql-action from 3.24.0 to 3.24.3 (#1298)
• b8a1d6a build(deps-dev): bump @​typescript-eslint/eslint-plugin from 6.20.0 to 6.21.0 ...
• Additional commits viewable in compare view

Updates github/codeql-action from 3.23.2 to 3.24.6

Changelog

Sourced from github/codeql-action's changelog.

3.24.6 - 29 Feb 2024

No user facing changes.

3.24.5 - 23 Feb 2024

• Update default CodeQL bundle version to 2.16.3. #2156

3.24.4 - 21 Feb 2024

• Fix an issue where an existing, but empty, /sys/fs/cgroup/cpuset.cpus file always resulted in a single-threaded run. #2151

3.24.3 - 15 Feb 2024

• Fix an issue where the CodeQL Action would fail to load a configuration specified by the config input to the init Action. #2147

3.24.2 - 15 Feb 2024

• Enable improved multi-threaded performance on larger runners for GitHub Enterprise Server users. This feature is already available to GitHub.com users. #2141

3.24.1 - 13 Feb 2024

• Update default CodeQL bundle version to 2.16.2. #2124
• The CodeQL action no longer fails if it can't write to the telemetry api endpoint. #2121

3.24.0 - 02 Feb 2024

• CodeQL Python analysis will no longer install dependencies on GitHub Enterprise Server, as is already the case for GitHub.com. See release notes for 3.23.0 for more details. #2106

Commits

• 8a470fd Merge pull request #2176 from github/update-v3.24.6-158d0780d
• d59eafb Update changelog for v3.24.6
• 158d078 Merge pull request #2175 from github/henrymercer/fix-languages-init-success
• 2307ff5 Add languages and build_mode to init success status report
• ccd3f02 Merge pull request #2173 from github/henrymercer/mark-third-party-limits-erro...
• c091725 Refactoring: Convert ActionName to enum
• e12a8cc Use isFirstPartyAnalysis for a stronger check
• 888ab31 Mark third-party SARIF limits errors as configuration errors
• bd56a05 Rename InvalidRequestError to InvalidSarifUploadError
• 7bde906 Merge pull request #2172 from github/henrymercer/fix-readme-typos
• Additional commits viewable in compare view

Updates peter-evans/create-pull-request from 6.0.0 to 6.0.1

Release notes

Sourced from peter-evans/create-pull-request's releases.

Create Pull Request v6.0.1

⚙️ Fixes an issue where updating a pull request leads to the error Cannot read properties of undefined (reading 'number'). This was likely caused by GitHub fixing a long standing bug with an API endpoint, resulting in a breaking change.

What's Changed

• build(deps-dev): bump @​types/jest from 29.5.11 to 29.5.12 by @​dependabot in peter-evans/create-pull-request#2730
• build(deps-dev): bump prettier from 3.2.4 to 3.2.5 by @​dependabot in peter-evans/create-pull-request#2731
• build(deps-dev): bump @​types/node from 18.19.10 to 18.19.14 by @​dependabot in peter-evans/create-pull-request#2732
• build(deps): bump peter-evans/slash-command-dispatch from 3 to 4 by @​dependabot in peter-evans/create-pull-request#2748
• build(deps): bump peter-evans/create-pull-request from 5 to 6 by @​dependabot in peter-evans/create-pull-request#2747
• build(deps-dev): bump @​types/node from 18.19.14 to 18.19.15 by @​dependabot in peter-evans/create-pull-request#2759
• build(deps-dev): bump eslint-plugin-jest from 27.6.3 to 27.9.0 by @​dependabot in peter-evans/create-pull-request#2769
• build(deps-dev): bump @​types/node from 18.19.15 to 18.19.17 by @​dependabot in peter-evans/create-pull-request#2768
• build(deps-dev): bump @​types/node from 18.19.17 to 18.19.18 by @​dependabot in peter-evans/create-pull-request#2780
• build(deps-dev): bump eslint from 8.56.0 to 8.57.0 by @​dependabot in peter-evans/create-pull-request#2781
• fix: list pulls using the correct head format by @​peter-evans in peter-evans/create-pull-request#2792

Full Changelog: https://github.com/peter-evans/create-pull-request/compare/v6.0.0...v6.0.1

Commits

• a4f52f8 fix: list pulls using the correct head format (#2792)
• 853c071 build(deps-dev): bump eslint from 8.56.0 to 8.57.0 (#2781)
• d2c126e build(deps-dev): bump @​types/node from 18.19.17 to 18.19.18 (#2780)
• 43d39c6 build(deps-dev): bump @​types/node from 18.19.15 to 18.19.17 (#2768)
• 5a9d206 build(deps-dev): bump eslint-plugin-jest from 27.6.3 to 27.9.0 (#2769)
• e0743ed build(deps-dev): bump @​types/node from 18.19.14 to 18.19.15 (#2759)
• e1529cb build(deps): bump peter-evans/create-pull-request from 5 to 6 (#2747)
• aad52e8 build(deps): bump peter-evans/slash-command-dispatch from 3 to 4 (#2748)
• a64ebdd build(deps-dev): bump @​types/node from 18.19.10 to 18.19.14 (#2732)
• 51b40af build(deps-dev): bump prettier from 3.2.4 to 3.2.5 (#2731)
• Additional commits viewable in compare view

Updates ncipollo/release-action from 1.13.0 to 1.14.0

Release notes

Sourced from ncipollo/release-action's releases.

v1.14.0

What's Changed

• Bump semver from 6.3.0 to 6.3.1 by @​dependabot in ncipollo/release-action#350
• Bump actions/checkout from 3 to 4 by @​dependabot in ncipollo/release-action#364
• Bump glob from 10.3.1 to 10.3.4 by @​dependabot in ncipollo/release-action#361
• Bump jest-circus from 29.5.0 to 29.6.4 by @​dependabot in ncipollo/release-action#359
• Bump typescript from 5.1.6 to 5.2.2 by @​dependabot in ncipollo/release-action#362
• Bump @​types/node from 20.3.3 to 20.6.0 by @​dependabot in ncipollo/release-action#366
• Bump jest and @​types/jest by @​dependabot in ncipollo/release-action#367
• Bump @​babel/traverse from 7.17.3 to 7.23.2 by @​dependabot in ncipollo/release-action#378
• Bump jest and @​types/jest by @​dependabot in ncipollo/release-action#377
• Bump jest-circus from 29.6.4 to 29.7.0 by @​dependabot in ncipollo/release-action#376
• Bump @​types/node from 20.6.0 to 20.8.6 by @​dependabot in ncipollo/release-action#379
• Bump @​actions/core from 1.10.0 to 1.10.1 by @​dependabot in ncipollo/release-action#375
• Bump @​types/jest from 29.5.5 to 29.5.7 by @​dependabot in ncipollo/release-action#386
• Bump actions/setup-node from 3 to 4 by @​dependabot in ncipollo/release-action#381
• Bump @​types/node from 20.8.6 to 20.9.0 by @​dependabot in ncipollo/release-action#390
• Bump typescript from 5.2.2 to 5.3.2 by @​dependabot in ncipollo/release-action#396
• Bump @​types/node from 20.9.0 to 20.10.1 by @​dependabot in ncipollo/release-action#395
• Bump @​types/jest from 29.5.7 to 29.5.11 by @​dependabot in ncipollo/release-action#399
• Bump @​actions/github from 5.1.1 to 6.0.0 by @​dependabot in ncipollo/release-action#385
• Bump typescript from 5.3.2 to 5.3.3 by @​dependabot in ncipollo/release-action#403
• Bump @​types/node from 20.10.1 to 20.10.6 by @​dependabot in ncipollo/release-action#402
• Upgrade to Node 20 by @​aovens-quantifi in ncipollo/release-action#411

New Contributors

• @​aovens-quantifi made their first contribution in ncipollo/release-action#411

Full Changelog: https://github.com/ncipollo/release-action/compare/v1...v1.14.0

Commits

• 2c591bc Prepare 1.14.0
• 1e3e9c6 Fix production build error
• c03240c apply debug build
• 66b1844 Upgrade to Node 20 (#411)
• a8aa04e Bump @​types/node from 20.10.1 to 20.10.6 (#402)
• 39c57fe Bump typescript from 5.3.2 to 5.3.3 (#403)
• 02a91b5 Fix build errors from github api update
• 0300282 Bump @​actions/github from 5.1.1 to 6.0.0 (#385)
• c4a7702 Add more info about announcements category
• 4f53bc4 Add discussionCategory caveat to readme
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions