Bump the actions group with 5 updates

[dependabot]

Bumps the actions group with 5 updates:

Package	From	To
actions/checkout	3	4
docker/setup-buildx-action	2.8.0	3.3.0
aquasecurity/trivy-action	0.22.0	0.23.0
mindsers/changelog-reader-action	2.2.2	2.2.3
coverallsapp/github-action	2.2.1	2.3.0

Updates actions/checkout from 3 to 4

Release notes

Sourced from actions/checkout's releases.

v4.0.0

What's Changed

• Update default runtime to node20 by @​takost in actions/checkout#1436
• Support fetching without the --progress option by @​simonbaird in actions/checkout#1067
• Release 4.0.0 by @​takost in actions/checkout#1447

New Contributors

• @​takost made their first contribution in actions/checkout#1436
• @​simonbaird made their first contribution in actions/checkout#1067

Full Changelog: actions/checkout@v3...v4.0.0

v3.6.0

What's Changed

• Mark test scripts with Bash'isms to be run via Bash by @​dscho in actions/checkout#1377
• Add option to fetch tags even if fetch-depth > 0 by @​RobertWieczoreck in actions/checkout#579
• Release 3.6.0 by @​luketomlinson in actions/checkout#1437

New Contributors

• @​RobertWieczoreck made their first contribution in actions/checkout#579
• @​luketomlinson made their first contribution in actions/checkout#1437

Full Changelog: actions/checkout@v3.5.3...v3.6.0

v3.5.3

What's Changed

• Fix: Checkout Issue in self hosted runner due to faulty submodule check-ins by @​megamanics in actions/checkout#1196
• Fix typos found by codespell by @​DimitriPapadopoulos in actions/checkout#1287
• Add support for sparse checkouts by @​dscho and @​dfdez in actions/checkout#1369
• Release v3.5.3 by @​TingluoHuang in actions/checkout#1376

New Contributors

• @​megamanics made their first contribution in actions/checkout#1196
• @​DimitriPapadopoulos made their first contribution in actions/checkout#1287
• @​dfdez made their first contribution in actions/checkout#1369

Full Changelog: actions/checkout@v3...v3.5.3

v3.5.2

What's Changed

• Fix: Use correct API url / endpoint in GHES by @​fhammerl in actions/checkout#1289 based on #1286 by @​1newsr

Full Changelog: actions/checkout@v3.5.1...v3.5.2

v3.5.1

What's Changed

• Improve checkout performance on Windows runners by upgrading @​actions/github dependency by @​BrettDong in actions/checkout#1246

New Contributors

• @​BrettDong made their first contribution in actions/checkout#1246

... (truncated)

Commits

• 692973e Prepare 4.1.7 release (#1775)
• 6ccd57f Pin actions/checkout's own workflows to a known, good, stable version. (#1776)
• b17fe1e Handle hidden refs (#1774)
• b80ff79 Bump actions/checkout from 3 to 4 (#1697)
• b1ec302 Bump the minor-npm-dependencies group across 1 directory with 4 updates (#1739)
• a5ac7e5 Update for 4.1.6 release (#1733)
• 24ed1a3 Check platform for extension (#1732)
• 44c2b7a README: Suggest user.email to be `41898282+github-actions[bot]@​users.norepl...
• 8459bc0 Bump actions/upload-artifact from 2 to 4 (#1695)
• 3f603f6 Bump actions/setup-node from 1 to 4 (#1696)
• Additional commits viewable in compare view

Updates docker/setup-buildx-action from 2.8.0 to 3.3.0

Release notes

Sourced from docker/setup-buildx-action's releases.

v3.3.0

• Bump @​docker/actions-toolkit from 0.19.0 to 0.20.0 by @​crazy-max in docker/setup-buildx-action#307

Full Changelog: docker/setup-buildx-action@v3.2.0...v3.3.0

v3.2.0

• Rename and align config inputs by @​crazy-max in docker/setup-buildx-action#303
  • config to buildkitd-config
  • config-inline to buildkitd-config-inline
• Bump @​docker/actions-toolkit from 0.17.0 to 0.19.0 in docker/setup-buildx-action#302 docker/setup-buildx-action#306

[!NOTE] config and config-inline input names are deprecated and will be removed in next major release.

Full Changelog: docker/setup-buildx-action@v3.1.0...v3.2.0

v3.1.0

• cache-binary input to enable/disable caching binary to GHA cache backend by @​crazy-max in docker/setup-buildx-action#300
• build(deps): bump @​babel/traverse from 7.17.3 to 7.23.2 in docker/setup-buildx-action#282
• build(deps): bump @​docker/actions-toolkit from 0.12.0 to 0.17.0 in docker/setup-buildx-action#281 docker/setup-buildx-action#284 docker/setup-buildx-action#299
• build(deps): bump uuid from 9.0.0 to 9.0.1 in docker/setup-buildx-action#271
• build(deps): bump undici from 5.26.3 to 5.28.3 in docker/setup-buildx-action#297

Full Changelog: docker/setup-buildx-action@v3.0.0...v3.1.0

v3.0.0

• Node 20 as default runtime (requires Actions Runner v2.308.0 or later) by @​crazy-max in docker/setup-buildx-action#264
• Bump @​actions/core from 1.10.0 to 1.10.1 in docker/setup-buildx-action#267

Full Changelog: docker/setup-buildx-action@v2.10.0...v3.0.0

v2.10.0

• Bump @​docker/actions-toolkit from 0.7.1 to 0.10.0 by @​crazy-max in docker/setup-buildx-action#258
• Bump word-wrap from 1.2.3 to 1.2.5 in docker/setup-buildx-action#253

Full Changelog: docker/setup-buildx-action@v2.9.1...v2.10.0

v2.9.1

• Bump @​docker/actions-toolkit from 0.7.0 to 0.7.1 in docker/setup-buildx-action#248
  • Fixes an issue where building Buildx does not match the local platform (docker/actions-toolkit#135)

Full Changelog: docker/setup-buildx-action@v2.9.0...v2.9.1

v2.9.0

• Bump @​docker/actions-toolkit from 0.6.0 to 0.7.0 in docker/setup-buildx-action#246
  • Adds support to cache Buildx binary to hosted tool cache and GHA cache backend

Full Changelog: docker/setup-buildx-action@v2.8.0...v2.9.0

Commits

• d70bba7 Merge pull request #307 from crazy-max/bump-toolkit
• 7638634 chore: update generated content
• c68420f bump @​docker/actions-toolkit from 0.19.0 to 0.20.0
• 2b51285 Merge pull request #306 from docker/dependabot/npm_and_yarn/docker/actions-to...
• 0f00370 chore: update generated content
• 11c9683 build(deps): bump @​docker/actions-toolkit from 0.18.0 to 0.19.0
• 56a16b8 Merge pull request #303 from crazy-max/fix-inputs
• c23f46e chore: update generated content
• f876da6 rename and align config inputs
• b7cf918 Merge pull request #304 from crazy-max/rm-docs-dir
• Additional commits viewable in compare view

Updates aquasecurity/trivy-action from 0.22.0 to 0.23.0

Release notes

Sourced from aquasecurity/trivy-action's releases.

v0.23.0

What's Changed

• Upgrade trivy to v0.52.2 by @​Dr-DevOps in aquasecurity/trivy-action#367

Full Changelog: aquasecurity/trivy-action@0.22.0...0.23.0

Commits

• 7c2007b Upgrade trivy to v0.52.2 (#367)
• See full diff in compare view

Updates mindsers/changelog-reader-action from 2.2.2 to 2.2.3

Release notes

Sourced from mindsers/changelog-reader-action's releases.

v2.2.3

Fixed

• Upgrade dependencies to solve deprecation issues.
• Use node v20
• Remove useless empty line between links in the body of a version

Changelog

Sourced from mindsers/changelog-reader-action's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[Unreleased]

[2.2.3] - 2024-03-10

Fixed

• Upgrade dependencies to solve deprecation issues.
• Use node v20
• Remove useless empty line between links in the body of a version

[2.2.2] - 2022-11-23

Fixed

• Upgrade dependencies to solve deprecation issues.

[2.2.1] - 2022-11-10

Fixed

• Change node engine for a non-deprecated version.

[2.2.0] - 2022-09-01

Changed

• Allow more section types into prerelease versions. #67

Fixed

• Change the links' syntax to make them correctly recognized by GitHub.

[2.1.1] - 2022-07-03

Fixed

• The action was returning empty data since the last version. Now correctly returns selected entries data.

[2.1.0] - 2022-06-14

Added

• Introduced changelog validation to help keep the release version in line with Semantic Versioning

... (truncated)

Commits

• 32aa5b4 Version bump to 2.2.3
• d80ff88 Rebuild the project
• 3749b1e Fix package command for node v20
• ebbb2a5 Fix tests on addLinks method
• 64ff230 Upgrade deps
• 1d532b4 Merge pull request #81 from mrks115/patch-1
• cc042cc dependencies: bump node to v20
• d8f4048 Merge branch 'develop'
• 3027c3a Merge pull request #76 from mindsers/develop
• See full diff in compare view

Updates coverallsapp/github-action from 2.2.1 to 2.3.0

Release notes

Sourced from coverallsapp/github-action's releases.

v2.3.0

What's Changed

• Set default values as strings per GH Action requirements by @​littleforest in coverallsapp/github-action#204
• Allow pinning of coverage reporter version by @​littleforest in coverallsapp/github-action#208

New Contributors

• @​littleforest made their first contribution in coverallsapp/github-action#204

Full Changelog: coverallsapp/github-action@v2.2.3...v2.3.0

v2.2.3

No release notes provided.

v2.2.2

No release notes provided.

Commits

• 643bc37 Allow pinning of coverage reporter version (#208)
• 1064f6c Set default values as strings per GH Action requirements (#204)
• c203f01 Update README.md
• 3dfc556 fix: don't fail if bin directory exists on windows (#189)
• 3b7078e feat: use pwsh for windows runner (#188)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Superseded by #248.