Merge branch 'main' into renovate/tj-actions-changed-files-45.x

.github/workflows/codeql.yml

@@ -43,7 +43,7 @@ jobs:
 
         steps:
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 
@@ -52,7 +52,7 @@ jobs:
 
             # Initializes the CodeQL tools for scanning.
             - name: "Initialize CodeQL"
-              uses: "github/codeql-action/init@662472033e021d55d94146f66f6058822b0b39fd" # v3.27.0
+              uses: "github/codeql-action/init@df409f7d9260372bd5f19e5b04e83cb3c43714ae" # v3.27.9
               with:
                   languages: "${{ matrix.language }}"
                   # If you wish to specify custom queries, you can do so here or in a config file.
@@ -62,7 +62,7 @@ jobs:
             # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
             # If this step fails, then you should remove it and run the build manually (see below)
             - name: "Autobuild"
-              uses: "github/codeql-action/autobuild@662472033e021d55d94146f66f6058822b0b39fd" # v3.27.0
+              uses: "github/codeql-action/autobuild@df409f7d9260372bd5f19e5b04e83cb3c43714ae" # v3.27.9
 
             # ℹ️ Command-line programs to run using the OS shell.
             # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
@@ -75,6 +75,6 @@ jobs:
             #   ./location_of_script_within_repo/buildscript.sh
 
             - name: "Perform CodeQL Analysis"
-              uses: "github/codeql-action/analyze@662472033e021d55d94146f66f6058822b0b39fd" # v3.27.0
+              uses: "github/codeql-action/analyze@df409f7d9260372bd5f19e5b04e83cb3c43714ae" # v3.27.9
               with:
                   category: "/language:${{matrix.language}}"

.github/workflows/comment-issue.yml

@@ -16,7 +16,7 @@ jobs:
             issues: "write"
         steps:
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 

.github/workflows/dependency-review.yml

@@ -21,7 +21,7 @@ jobs:
         runs-on: "ubuntu-latest"
         steps:
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 
@@ -33,4 +33,4 @@ jobs:
                   EMAIL: "github-actions[bot]@users.noreply.github.com"
 
             - name: "Dependency Review"
-              uses: "actions/dependency-review-action@4081bf99e2866ebe428fc0477b69eb4fcda7220a" # v4.4.0
+              uses: "actions/dependency-review-action@3b139cfc5fae8b618d3eae3675e383bb1769c019" # v4.5.0

.github/workflows/lint.yml

@@ -35,7 +35,7 @@ jobs:
             package_json_lintable: "${{ steps.changes.outputs.package_json_lintable }}"
         steps:
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 
@@ -60,7 +60,7 @@ jobs:
         runs-on: "ubuntu-latest"
         steps:
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 
@@ -111,7 +111,7 @@ jobs:
         runs-on: "ubuntu-latest"
         steps:
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 
@@ -162,7 +162,7 @@ jobs:
         runs-on: "ubuntu-latest"
         steps:
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 
@@ -213,7 +213,7 @@ jobs:
         runs-on: "ubuntu-latest"
         steps:
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 
@@ -237,7 +237,7 @@ jobs:
         runs-on: "ubuntu-latest"
         steps:
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 
@@ -262,7 +262,7 @@ jobs:
         runs-on: "ubuntu-latest"
         steps:
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 
@@ -312,7 +312,7 @@ jobs:
             # If any jobs we depend on fail, we will fail since this is a required check
             # NOTE: A timeout is considered a failure
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 

.github/workflows/require-allow-edits.yml

@@ -16,7 +16,7 @@ jobs:
 
         steps:
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 

.github/workflows/scorecards.yml

@@ -33,7 +33,7 @@ jobs:
 
         steps:
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 
@@ -73,6 +73,6 @@ jobs:
 
             # Upload the results to GitHub's code scanning dashboard.
             - name: "Upload to code-scanning"
-              uses: "github/codeql-action/upload-sarif@662472033e021d55d94146f66f6058822b0b39fd" # v3.27.0
+              uses: "github/codeql-action/upload-sarif@df409f7d9260372bd5f19e5b04e83cb3c43714ae" # v3.27.9
               with:
                   sarif_file: "results.sarif"

.github/workflows/semantic-pull-request.yml

@@ -23,7 +23,7 @@ jobs:
         name: "Semantic Pull Request"
         steps:
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 

.github/workflows/semantic-release.yml

@@ -28,7 +28,7 @@ jobs:
 
         steps:
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 

.github/workflows/test.yml

@@ -32,7 +32,7 @@ jobs:
             codecov: "${{ steps.changes.outputs.codecov }}"
         steps:
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 
@@ -72,7 +72,7 @@ jobs:
             NODE: "${{ matrix.node_version }}"
         steps:
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 
@@ -128,7 +128,7 @@ jobs:
             NODE: "${{ matrix.node_version }}"
         steps:
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"
 
@@ -206,7 +206,7 @@ jobs:
             # If any jobs we depend on fail, we will fail since this is a required check
             # NOTE: A timeout is considered a failure
             - name: "Harden Runner"
-              uses: "step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7" # v2.10.1
+              uses: "step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f" # v2.10.2
               with:
                   egress-policy: "audit"