From e8fde2f52c16496cd07fcd0db19f3c8b52178080 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 12 Aug 2025 02:12:12 +0000
Subject: [PATCH] Bump the github-actions group with 2 updates

Bumps the github-actions group with 2 updates: [actions/checkout](https://github.com/actions/checkout) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `actions/checkout` from 4.2.2 to 5.0.0
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/11bd71901bbe5b1630ceea73d27597364c9af683...08c6903cd8c0fde910a37f88322edcfb5dd907a8)

Updates `github/codeql-action` from 3.29.3 to 3.29.8
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/d6bbdef45e766d081b84a2def353b0055f728d3e...76621b61decf072c1cee8dd1ce2d2a82d33c17ed)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 5.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: github/codeql-action
  dependency-version: 3.29.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/ci.yml      |  6 +++---
 .github/workflows/release.yml |  2 +-
 .github/workflows/sast.yml    | 10 +++++-----
 3 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index dc9b64f..4436c29 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -20,7 +20,7 @@ jobs:
                 bun-version: ["latest"]
 
         steps:
-            - uses: "actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683"
+            - uses: "actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8"
             - name: "Use Bun ${{ matrix.bun-version }}"
               uses: "oven-sh/setup-bun@735343b667d3e6f658f44d0eca948eb6282f2b76"
               with: { bun-version: "${{ matrix.bun-version }}" }
@@ -37,7 +37,7 @@ jobs:
                 deno-version: ["2.x"]
 
         steps:
-            - uses: "actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683"
+            - uses: "actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8"
             - name: "Use Deno ${{ matrix.deno-version }}"
               uses: "denoland/setup-deno@e95548e56dfa95d4e1a28d6f422fafe75c4c26fb"
               with: { deno-version: "v${{ matrix.deno-version }}" }
@@ -55,7 +55,7 @@ jobs:
                 node-version: ["20.x", "22.x", "24.x"]
 
         steps:
-            - uses: "actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683"
+            - uses: "actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8"
             - uses: "pnpm/action-setup@a7487c7e89a18df4991f7f222e4898a00d66ddda"
               with: { version: "latest" }
             - name: "Use Node.js ${{ matrix.node-version }}"
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 3690dfc..96e7a50 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -16,7 +16,7 @@ jobs:
             id-token: "write"
 
         steps:
-            - uses: "actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683"
+            - uses: "actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8"
             - uses: "pnpm/action-setup@a7487c7e89a18df4991f7f222e4898a00d66ddda"
               with:
                   version: "latest"
diff --git a/.github/workflows/sast.yml b/.github/workflows/sast.yml
index ea9e477..5de0e14 100644
--- a/.github/workflows/sast.yml
+++ b/.github/workflows/sast.yml
@@ -24,7 +24,7 @@ jobs:
             contents: "read"
             actions: "read"
         steps:
-            - uses: "actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683"
+            - uses: "actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8"
               with:
                   persist-credentials: false
             - uses: "ossf/scorecard-action@05b42c624433fc40578a4040d5cf5e36ddca8cde"
@@ -37,7 +37,7 @@ jobs:
                   name: "SARIF file"
                   path: "results.sarif"
                   retention-days: 5
-            - uses: "github/codeql-action/upload-sarif@d6bbdef45e766d081b84a2def353b0055f728d3e"
+            - uses: "github/codeql-action/upload-sarif@76621b61decf072c1cee8dd1ce2d2a82d33c17ed"
               with:
                   sarif_file: "results.sarif"
 
@@ -50,8 +50,8 @@ jobs:
             security-events: write
 
         steps:
-            - uses: "actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683"
-            - uses: "github/codeql-action/init@d6bbdef45e766d081b84a2def353b0055f728d3e"
+            - uses: "actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8"
+            - uses: "github/codeql-action/init@76621b61decf072c1cee8dd1ce2d2a82d33c17ed"
               with:
                   languages: "typescript"
             - uses: "pnpm/action-setup@a7487c7e89a18df4991f7f222e4898a00d66ddda"
@@ -62,4 +62,4 @@ jobs:
                   node-version-file: ".nvmrc"
                   cache: "pnpm"
             - run: "make install"
-            - uses: "github/codeql-action/analyze@d6bbdef45e766d081b84a2def353b0055f728d3e"
+            - uses: "github/codeql-action/analyze@76621b61decf072c1cee8dd1ce2d2a82d33c17ed"