ci(deps): update github actions (#177)

This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [actions/checkout](https://redirect.github.com/actions/checkout) |
action | minor | `v4.1.1` -> `v4.2.2` |
|
[actions/create-github-app-token](https://redirect.github.com/actions/create-github-app-token)
| action | patch | `v1.11.1` -> `v1.11.2` |
| [actions/setup-java](https://redirect.github.com/actions/setup-java) |
action | minor | `v4.6.0` -> `v4.7.0` |
| [actions/setup-node](https://redirect.github.com/actions/setup-node) |
action | minor | `v4.1.0` -> `v4.2.0` |
|
[actions/setup-python](https://redirect.github.com/actions/setup-python)
| action | minor | `v4.7.1` -> `v4.8.0` |
| [actions/stale](https://redirect.github.com/actions/stale) | action |
minor | `v9.0.0` -> `v9.1.0` |
|
[actions/upload-artifact](https://redirect.github.com/actions/upload-artifact)
| action | minor | `v4.5.0` -> `v4.6.0` |
|
[astral-sh/ruff-action](https://redirect.github.com/astral-sh/ruff-action)
| action | minor | `v3.0.1` -> `v3.1.0` |
|
[aws-actions/configure-aws-credentials](https://redirect.github.com/aws-actions/configure-aws-credentials)
| action | patch | `v4.0.2` -> `v4.0.3` |
|
[docker/build-push-action](https://redirect.github.com/docker/build-push-action)
| action | minor | `v6.11.0` -> `v6.13.0` |
|
[github/codeql-action](https://redirect.github.com/github/codeql-action)
| action | patch | `v3.28.0` -> `v3.28.8` |
|
[hoverkraft-tech/compose-action](https://redirect.github.com/hoverkraft-tech/compose-action)
| action | minor | `v2.0.1` -> `v2.2.0` |
| rhysd/actionlint | container | patch | `1.7.6` -> `1.7.7` |

---

### Release Notes

<details>
<summary>actions/checkout (actions/checkout)</summary>

###
[`v4.2.2`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v422)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.2.1...v4.2.2)

- `url-helper.ts` now leverages well-known environment variables by
[@&#8203;jww3](https://redirect.github.com/jww3) in
[https://github.com/actions/checkout/pull/1941](https://redirect.github.com/actions/checkout/pull/1941)
- Expand unit test coverage for `isGhes` by
[@&#8203;jww3](https://redirect.github.com/jww3) in
[https://github.com/actions/checkout/pull/1946](https://redirect.github.com/actions/checkout/pull/1946)

###
[`v4.2.1`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v421)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.2.0...v4.2.1)

- Check out other refs/\* by commit if provided, fall back to ref by
[@&#8203;orhantoy](https://redirect.github.com/orhantoy) in
[https://github.com/actions/checkout/pull/1924](https://redirect.github.com/actions/checkout/pull/1924)

###
[`v4.2.0`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v420)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.1.7...v4.2.0)

- Add Ref and Commit outputs by
[@&#8203;lucacome](https://redirect.github.com/lucacome) in
[https://github.com/actions/checkout/pull/1180](https://redirect.github.com/actions/checkout/pull/1180)
- Dependency updates by
[@&#8203;dependabot-](https://redirect.github.com/dependabot-)
[https://github.com/actions/checkout/pull/1777](https://redirect.github.com/actions/checkout/pull/1777),
[https://github.com/actions/checkout/pull/1872](https://redirect.github.com/actions/checkout/pull/1872)

###
[`v4.1.7`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v417)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.1.6...v4.1.7)

- Bump the minor-npm-dependencies group across 1 directory with 4
updates by [@&#8203;dependabot](https://redirect.github.com/dependabot)
in
[https://github.com/actions/checkout/pull/1739](https://redirect.github.com/actions/checkout/pull/1739)
- Bump actions/checkout from 3 to 4 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/checkout/pull/1697](https://redirect.github.com/actions/checkout/pull/1697)
- Check out other refs/\* by commit by
[@&#8203;orhantoy](https://redirect.github.com/orhantoy) in
[https://github.com/actions/checkout/pull/1774](https://redirect.github.com/actions/checkout/pull/1774)
- Pin actions/checkout's own workflows to a known, good, stable version.
by [@&#8203;jww3](https://redirect.github.com/jww3) in
[https://github.com/actions/checkout/pull/1776](https://redirect.github.com/actions/checkout/pull/1776)

###
[`v4.1.6`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v416)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.1.5...v4.1.6)

- Check platform to set archive extension appropriately by
[@&#8203;cory-miller](https://redirect.github.com/cory-miller) in
[https://github.com/actions/checkout/pull/1732](https://redirect.github.com/actions/checkout/pull/1732)

###
[`v4.1.5`](https://redirect.github.com/actions/checkout/releases/tag/v4.1.5)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.1.4...v4.1.5)

#### What's Changed

- Update NPM dependencies by
[@&#8203;cory-miller](https://redirect.github.com/cory-miller) in
[https://github.com/actions/checkout/pull/1703](https://redirect.github.com/actions/checkout/pull/1703)
- Bump github/codeql-action from 2 to 3 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/checkout/pull/1694](https://redirect.github.com/actions/checkout/pull/1694)
- Bump actions/setup-node from 1 to 4 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/checkout/pull/1696](https://redirect.github.com/actions/checkout/pull/1696)
- Bump actions/upload-artifact from 2 to 4 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/checkout/pull/1695](https://redirect.github.com/actions/checkout/pull/1695)
- README: Suggest `user.email` to be
`41898282+github-actions[bot]@&#8203;users.noreply.github.com` by
[@&#8203;cory-miller](https://redirect.github.com/cory-miller) in
[https://github.com/actions/checkout/pull/1707](https://redirect.github.com/actions/checkout/pull/1707)

**Full Changelog**:
actions/checkout@v4.1.4...v4.1.5

###
[`v4.1.4`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v414)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.1.3...v4.1.4)

- Disable `extensions.worktreeConfig` when disabling `sparse-checkout`
by [@&#8203;jww3](https://redirect.github.com/jww3) in
[https://github.com/actions/checkout/pull/1692](https://redirect.github.com/actions/checkout/pull/1692)
- Add dependabot config by
[@&#8203;cory-miller](https://redirect.github.com/cory-miller) in
[https://github.com/actions/checkout/pull/1688](https://redirect.github.com/actions/checkout/pull/1688)
- Bump the minor-actions-dependencies group with 2 updates by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/checkout/pull/1693](https://redirect.github.com/actions/checkout/pull/1693)
- Bump word-wrap from 1.2.3 to 1.2.5 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/checkout/pull/1643](https://redirect.github.com/actions/checkout/pull/1643)

###
[`v4.1.3`](https://redirect.github.com/actions/checkout/releases/tag/v4.1.3)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.1.2...v4.1.3)

#### What's Changed

- Update `actions/checkout` version in `update-main-version.yml` by
[@&#8203;jww3](https://redirect.github.com/jww3) in
[https://github.com/actions/checkout/pull/1650](https://redirect.github.com/actions/checkout/pull/1650)
- Check git version before attempting to disable `sparse-checkout` by
[@&#8203;jww3](https://redirect.github.com/jww3) in
[https://github.com/actions/checkout/pull/1656](https://redirect.github.com/actions/checkout/pull/1656)
- Add SSH user parameter by
[@&#8203;cory-miller](https://redirect.github.com/cory-miller) in
[https://github.com/actions/checkout/pull/1685](https://redirect.github.com/actions/checkout/pull/1685)

**Full Changelog**:
actions/checkout@v4.1.2...v4.1.3

###
[`v4.1.2`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v412)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.1.1...v4.1.2)

- Fix: Disable sparse checkout whenever `sparse-checkout` option is not
present [@&#8203;dscho](https://redirect.github.com/dscho) in
[https://github.com/actions/checkout/pull/1598](https://redirect.github.com/actions/checkout/pull/1598)

</details>

<details>
<summary>actions/create-github-app-token
(actions/create-github-app-token)</summary>

###
[`v1.11.2`](https://redirect.github.com/actions/create-github-app-token/releases/tag/v1.11.2)

[Compare
Source](https://redirect.github.com/actions/create-github-app-token/compare/v1.11.1...v1.11.2)

##### Bug Fixes

- **deps:** bump
[@&#8203;octokit/request](https://redirect.github.com/octokit/request)
from 9.1.3 to 9.1.4 in the production-dependencies group
([#&#8203;196](https://redirect.github.com/actions/create-github-app-token/issues/196))
([b4192a5](https://redirect.github.com/actions/create-github-app-token/commit/b4192a5b3659c0e5875f868c44727ef4ecc5d579)),
closes
[#&#8203;730](https://redirect.github.com/actions/create-github-app-token/issues/730)
[#&#8203;730](https://redirect.github.com/actions/create-github-app-token/issues/730)
[#&#8203;729](https://redirect.github.com/actions/create-github-app-token/issues/729)
[#&#8203;727](https://redirect.github.com/actions/create-github-app-token/issues/727)
[#&#8203;726](https://redirect.github.com/actions/create-github-app-token/issues/726)
[#&#8203;723](https://redirect.github.com/actions/create-github-app-token/issues/723)
[#&#8203;724](https://redirect.github.com/actions/create-github-app-token/issues/724)
[#&#8203;722](https://redirect.github.com/actions/create-github-app-token/issues/722)
[#&#8203;721](https://redirect.github.com/actions/create-github-app-token/issues/721)
[#&#8203;720](https://redirect.github.com/actions/create-github-app-token/issues/720)
[#&#8203;719](https://redirect.github.com/actions/create-github-app-token/issues/719)
- **deps:** bump undici from 6.19.8 to 7.2.0
([#&#8203;198](https://redirect.github.com/actions/create-github-app-token/issues/198))
([29aa051](https://redirect.github.com/actions/create-github-app-token/commit/29aa0514a79f3b4aa8b1547173a41455949e4bf6)),
closes
[nodejs/undici#3958](https://redirect.github.com/nodejs/undici/issues/3958)
[nodejs/undici#3955](https://redirect.github.com/nodejs/undici/issues/3955)
[nodejs/undici#3962](https://redirect.github.com/nodejs/undici/issues/3962)
[nodejs/undici#3921](https://redirect.github.com/nodejs/undici/issues/3921)
[nodejs/undici#3923](https://redirect.github.com/nodejs/undici/issues/3923)
[nodejs/undici#3925](https://redirect.github.com/nodejs/undici/issues/3925)
[nodejs/undici#3926](https://redirect.github.com/nodejs/undici/issues/3926)
[nodejs/undici#3924](https://redirect.github.com/nodejs/undici/issues/3924)
[nodejs/undici#3933](https://redirect.github.com/nodejs/undici/issues/3933)
[nodejs/undici#3916](https://redirect.github.com/nodejs/undici/issues/3916)
[nodejs/undici#3930](https://redirect.github.com/nodejs/undici/issues/3930)
[nodejs/undici#3938](https://redirect.github.com/nodejs/undici/issues/3938)
[#&#8203;3937](https://redirect.github.com/actions/create-github-app-token/issues/3937)
[nodejs/undici#3940](https://redirect.github.com/nodejs/undici/issues/3940)
[nodejs/undici#3931](https://redirect.github.com/nodejs/undici/issues/3931)
[nodejs/undici#3941](https://redirect.github.com/nodejs/undici/issues/3941)
[nodejs/undici#3911](https://redirect.github.com/nodejs/undici/issues/3911)
[nodejs/undici#3888](https://redirect.github.com/nodejs/undici/issues/3888)
[nodejs/undici#3939](https://redirect.github.com/nodejs/undici/issues/3939)
[nodejs/undici#3947](https://redirect.github.com/nodejs/undici/issues/3947)
[nodejs/undici#3945](https://redirect.github.com/nodejs/undici/issues/3945)
[nodejs/undici#3916](https://redirect.github.com/nodejs/undici/issues/3916)
[nodejs/undici#3893](https://redirect.github.com/nodejs/undici/issues/3893)
[nodejs/undici#3902](https://redirect.github.com/nodejs/undici/issues/3902)
[#&#8203;3901](https://redirect.github.com/actions/create-github-app-token/issues/3901)
[nodejs/undici#3903](https://redirect.github.com/nodejs/undici/issues/3903)
[nodejs/undici#3905](https://redirect.github.com/nodejs/undici/issues/3905)
[nodejs/undici#3900](https://redirect.github.com/nodejs/undici/issues/3900)
[nodejs/undici#3913](https://redirect.github.com/nodejs/undici/issues/3913)
[nodejs/undici#3910](https://redirect.github.com/nodejs/undici/issues/3910)
[nodejs/undici#3909](https://redirect.github.com/nodejs/undici/issues/3909)
[nodejs/undici#3906](https://redirect.github.com/nodejs/undici/issues/3906)
[nodejs/undici#3922](https://redirect.github.com/nodejs/undici/issues/3922)
[#&#8203;3962](https://redirect.github.com/actions/create-github-app-token/issues/3962)
[#&#8203;3955](https://redirect.github.com/actions/create-github-app-token/issues/3955)
[#&#8203;3958](https://redirect.github.com/actions/create-github-app-token/issues/3958)
[#&#8203;3945](https://redirect.github.com/actions/create-github-app-token/issues/3945)
[#&#8203;3947](https://redirect.github.com/actions/create-github-app-token/issues/3947)
[#&#8203;3939](https://redirect.github.com/actions/create-github-app-token/issues/3939)
[#&#8203;3888](https://redirect.github.com/actions/create-github-app-token/issues/3888)
[#&#8203;3911](https://redirect.github.com/actions/create-github-app-token/issues/3911)
[#&#8203;3941](https://redirect.github.com/actions/create-github-app-token/issues/3941)

</details>

<details>
<summary>actions/setup-java (actions/setup-java)</summary>

###
[`v4.7.0`](https://redirect.github.com/actions/setup-java/releases/tag/v4.7.0)

[Compare
Source](https://redirect.github.com/actions/setup-java/compare/v4.6.0...v4.7.0)

##### What's Changed

- Configure Dependabot settings by
[@&#8203;HarithaVattikuti](https://redirect.github.com/HarithaVattikuti)
in
[https://github.com/actions/setup-java/pull/722](https://redirect.github.com/actions/setup-java/pull/722)
- README Update: Added a permissions section by
[@&#8203;benwells](https://redirect.github.com/benwells) in
[https://github.com/actions/setup-java/pull/723](https://redirect.github.com/actions/setup-java/pull/723)
- Upgrade `cache` from version 3.2.4 to 4.0.0 by
[@&#8203;aparnajyothi-y](https://redirect.github.com/aparnajyothi-y) in
[https://github.com/actions/setup-java/pull/724](https://redirect.github.com/actions/setup-java/pull/724)
- Upgrade `@actions/http-client` from 2.2.1 to 2.2.3 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/setup-java/pull/728](https://redirect.github.com/actions/setup-java/pull/728)
- Upgrade `actions/publish-immutable-action` from 0.0.3 to 0.0.4 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/setup-java/pull/727](https://redirect.github.com/actions/setup-java/pull/727)
- Upgrade `@types/jest` from 29.5.12 to 29.5.14 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/setup-java/pull/729](https://redirect.github.com/actions/setup-java/pull/729)

##### New Contributors

- [@&#8203;benwells](https://redirect.github.com/benwells) made their
first contribution in
[https://github.com/actions/setup-java/pull/723](https://redirect.github.com/actions/setup-java/pull/723)

**Full Changelog**:
actions/setup-java@v4...v4.7.0

</details>

<details>
<summary>actions/setup-node (actions/setup-node)</summary>

###
[`v4.2.0`](https://redirect.github.com/actions/setup-node/compare/v4.1.0...v4.2.0)

[Compare
Source](https://redirect.github.com/actions/setup-node/compare/v4.1.0...v4.2.0)

</details>

<details>
<summary>actions/setup-python (actions/setup-python)</summary>

###
[`v4.8.0`](https://redirect.github.com/actions/setup-python/releases/tag/v4.8.0)

[Compare
Source](https://redirect.github.com/actions/setup-python/compare/v4.7.1...v4.8.0)

#### What's Changed

In scope of this release we added support for GraalPy
([https://github.com/actions/setup-python/pull/694](https://redirect.github.com/actions/setup-python/pull/694)).
You can use this snippet to set up GraalPy:

```yaml
steps:
- uses: actions/checkout@v4
- uses: actions/setup-python@v4 
  with:
    python-version: 'graalpy-22.3' 
- run: python my_script.py
```

Besides, the release contains such changes as:

- Trim python version when reading from file by
[@&#8203;FerranPares](https://redirect.github.com/FerranPares) in
[https://github.com/actions/setup-python/pull/628](https://redirect.github.com/actions/setup-python/pull/628)
- Use non-deprecated versions in examples by
[@&#8203;jeffwidman](https://redirect.github.com/jeffwidman) in
[https://github.com/actions/setup-python/pull/724](https://redirect.github.com/actions/setup-python/pull/724)
- Change deprecation comment to past tense by
[@&#8203;jeffwidman](https://redirect.github.com/jeffwidman) in
[https://github.com/actions/setup-python/pull/723](https://redirect.github.com/actions/setup-python/pull/723)
- Bump
[@&#8203;babel/traverse](https://redirect.github.com/babel/traverse)
from 7.9.0 to 7.23.2 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/setup-python/pull/743](https://redirect.github.com/actions/setup-python/pull/743)
- advanced-usage.md: Encourage the use actions/checkout@v4 by
[@&#8203;cclauss](https://redirect.github.com/cclauss) in
[https://github.com/actions/setup-python/pull/729](https://redirect.github.com/actions/setup-python/pull/729)
- Examples now use checkout@v4 by
[@&#8203;simonw](https://redirect.github.com/simonw) in
[https://github.com/actions/setup-python/pull/738](https://redirect.github.com/actions/setup-python/pull/738)
- Update actions/checkout to v4 by
[@&#8203;dmitry-shibanov](https://redirect.github.com/dmitry-shibanov)
in
[https://github.com/actions/setup-python/pull/761](https://redirect.github.com/actions/setup-python/pull/761)

#### New Contributors

- [@&#8203;FerranPares](https://redirect.github.com/FerranPares) made
their first contribution in
[https://github.com/actions/setup-python/pull/628](https://redirect.github.com/actions/setup-python/pull/628)
- [@&#8203;timfel](https://redirect.github.com/timfel) made their first
contribution in
[https://github.com/actions/setup-python/pull/694](https://redirect.github.com/actions/setup-python/pull/694)
- [@&#8203;jeffwidman](https://redirect.github.com/jeffwidman) made
their first contribution in
[https://github.com/actions/setup-python/pull/724](https://redirect.github.com/actions/setup-python/pull/724)

**Full Changelog**:
actions/setup-python@v4...v4.8.0

</details>

<details>
<summary>actions/stale (actions/stale)</summary>

###
[`v9.1.0`](https://redirect.github.com/actions/stale/releases/tag/v9.1.0)

[Compare
Source](https://redirect.github.com/actions/stale/compare/v9.0.0...v9.1.0)

#### What's Changed

- Documentation update by
[@&#8203;Marukome0743](https://redirect.github.com/Marukome0743) in
[https://github.com/actions/stale/pull/1116](https://redirect.github.com/actions/stale/pull/1116)
- Add workflow file for publishing releases to immutable action package
by [@&#8203;Jcambass](https://redirect.github.com/Jcambass) in
[https://github.com/actions/stale/pull/1179](https://redirect.github.com/actions/stale/pull/1179)
- Update undici from 5.28.2 to 5.28.4 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/stale/pull/1150](https://redirect.github.com/actions/stale/pull/1150)
- Update actions/checkout from 3 to 4 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/stale/pull/1091](https://redirect.github.com/actions/stale/pull/1091)
- Update actions/publish-action from 0.2.2 to 0.3.0 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/stale/pull/1147](https://redirect.github.com/actions/stale/pull/1147)
- Update ts-jest from 29.1.1 to 29.2.5 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/stale/pull/1175](https://redirect.github.com/actions/stale/pull/1175)
- Update
[@&#8203;actions/core](https://redirect.github.com/actions/core) from
1.10.1 to 1.11.1 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/stale/pull/1191](https://redirect.github.com/actions/stale/pull/1191)
- Update [@&#8203;types/jest](https://redirect.github.com/types/jest)
from 29.5.11 to 29.5.14 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/stale/pull/1193](https://redirect.github.com/actions/stale/pull/1193)
- Update
[@&#8203;actions/cache](https://redirect.github.com/actions/cache) from
3.2.2 to 4.0.0 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/actions/stale/pull/1194](https://redirect.github.com/actions/stale/pull/1194)

#### New Contributors

- [@&#8203;Marukome0743](https://redirect.github.com/Marukome0743) made
their first contribution in
[https://github.com/actions/stale/pull/1116](https://redirect.github.com/actions/stale/pull/1116)
- [@&#8203;Jcambass](https://redirect.github.com/Jcambass) made their
first contribution in
[https://github.com/actions/stale/pull/1179](https://redirect.github.com/actions/stale/pull/1179)

**Full Changelog**: actions/stale@v9...v9.1.0

</details>

<details>
<summary>actions/upload-artifact (actions/upload-artifact)</summary>

###
[`v4.6.0`](https://redirect.github.com/actions/upload-artifact/releases/tag/v4.6.0)

[Compare
Source](https://redirect.github.com/actions/upload-artifact/compare/v4.5.0...v4.6.0)

#### What's Changed

- Expose env vars to control concurrency and timeout by
[@&#8203;yacaovsnc](https://redirect.github.com/yacaovsnc) in
[https://github.com/actions/upload-artifact/pull/662](https://redirect.github.com/actions/upload-artifact/pull/662)

**Full Changelog**:
actions/upload-artifact@v4...v4.6.0

</details>

<details>
<summary>astral-sh/ruff-action (astral-sh/ruff-action)</summary>

###
[`v3.1.0`](https://redirect.github.com/astral-sh/ruff-action/releases/tag/v3.1.0):
🌈 Determine ruff version from optional or dependency groups

[Compare
Source](https://redirect.github.com/astral-sh/ruff-action/compare/v3.0.2...v3.1.0)

#### Changes

Big thank you to
[@&#8203;AA-Turner](https://redirect.github.com/AA-Turner) for expanding
the pyproject.toml parsing to also find the ruff version to use in the
following scenarios:

```toml
[dependency-groups]
dev = [
    { include-group = "docs" },
    { include-group = "lint" },
]
docs = [
    "sphinx",
]
lint = [
    "ruff==0.8.3",
]
```

```toml
[project.optional-dependencies]
lint = [
    "ruff==0.8.3",
]
```

#### 🚀 Enhancements

- Read the `[project.optional-dependencies]` and `[dependency-groups]`
tables [@&#8203;AA-Turner](https://redirect.github.com/AA-Turner)
([#&#8203;66](https://redirect.github.com/astral-sh/ruff-action/issues/66))

###
[`v3.0.2`](https://redirect.github.com/astral-sh/ruff-action/releases/tag/v3.0.2):
🌈 Full support for GHES

[Compare
Source](https://redirect.github.com/astral-sh/ruff-action/compare/v3.0.1...v3.0.2)

#### Changes

This release fixes some issues that prevented use with GitHub Enterprise
Server instances.
Parsing the ruff version from pyproject.toml now also uses a library
that is fully TOML 1.0.0 compliant.

#### 🐛 Bug fixes

- Do not expect GITHUB_TOKEN to be set or valid
[@&#8203;eifinger](https://redirect.github.com/eifinger)
([#&#8203;65](https://redirect.github.com/astral-sh/ruff-action/issues/65))
- Use TOML 1.0.0 compliant library for parsing
[@&#8203;eifinger](https://redirect.github.com/eifinger)
([#&#8203;47](https://redirect.github.com/astral-sh/ruff-action/issues/47))

#### 🧰 Maintenance

- Fix compiled known versions
[@&#8203;eifinger](https://redirect.github.com/eifinger)
([#&#8203;62](https://redirect.github.com/astral-sh/ruff-action/issues/62))
- chore: update known checksums for 0.9.3
@&#8203;[github-actions\[bot\]](https://redirect.github.com/apps/github-actions)
([#&#8203;61](https://redirect.github.com/astral-sh/ruff-action/issues/61))
- chore: update known checksums for 0.9.1
@&#8203;[github-actions\[bot\]](https://redirect.github.com/apps/github-actions)
([#&#8203;42](https://redirect.github.com/astral-sh/ruff-action/issues/42))

#### 📚 Documentation

- Fix Markdown link to Install the latest version
[@&#8203;eifinger](https://redirect.github.com/eifinger)
([#&#8203;58](https://redirect.github.com/astral-sh/ruff-action/issues/58))
- update readme to v3
[@&#8203;cclauss](https://redirect.github.com/cclauss)
([#&#8203;35](https://redirect.github.com/astral-sh/ruff-action/issues/35))

#### ⬆️ Dependency updates

- Bump [@&#8203;types/node](https://redirect.github.com/types/node) from
22.10.10 to 22.12.0
@&#8203;[dependabot\[bot\]](https://redirect.github.com/apps/dependabot)
([#&#8203;60](https://redirect.github.com/astral-sh/ruff-action/issues/60))
- Bump eifinger/actionlint-action from 1.9.0 to 1.9.1
@&#8203;[dependabot\[bot\]](https://redirect.github.com/apps/dependabot)
([#&#8203;59](https://redirect.github.com/astral-sh/ruff-action/issues/59))
- Bump typescript from 5.7.2 to 5.7.3
@&#8203;[dependabot\[bot\]](https://redirect.github.com/apps/dependabot)
([#&#8203;41](https://redirect.github.com/astral-sh/ruff-action/issues/41))
- Bump release-drafter/release-drafter from 6.0.0 to 6.1.0
@&#8203;[dependabot\[bot\]](https://redirect.github.com/apps/dependabot)
([#&#8203;50](https://redirect.github.com/astral-sh/ruff-action/issues/50))
- Bump [@&#8203;types/node](https://redirect.github.com/types/node) from
22.10.5 to 22.10.10
@&#8203;[dependabot\[bot\]](https://redirect.github.com/apps/dependabot)
([#&#8203;53](https://redirect.github.com/astral-sh/ruff-action/issues/53))
- Bump [@&#8203;types/node](https://redirect.github.com/types/node) from
22.10.2 to 22.10.5
@&#8203;[dependabot\[bot\]](https://redirect.github.com/apps/dependabot)
([#&#8203;38](https://redirect.github.com/astral-sh/ruff-action/issues/38))
- Bump eifinger/actionlint-action from 1.8.0 to 1.9.0
@&#8203;[dependabot\[bot\]](https://redirect.github.com/apps/dependabot)
([#&#8203;39](https://redirect.github.com/astral-sh/ruff-action/issues/39))
- Bump peter-evans/create-pull-request from 7.0.5 to 7.0.6
@&#8203;[dependabot\[bot\]](https://redirect.github.com/apps/dependabot)
([#&#8203;34](https://redirect.github.com/astral-sh/ruff-action/issues/34))
- Bump eifinger/actionlint-action to v1.8.0
[@&#8203;eifinger](https://redirect.github.com/eifinger)
([#&#8203;33](https://redirect.github.com/astral-sh/ruff-action/issues/33))

</details>

<details>
<summary>aws-actions/configure-aws-credentials
(aws-actions/configure-aws-credentials)</summary>

###
[`v4.0.3`](https://redirect.github.com/aws-actions/configure-aws-credentials/releases/tag/v4.0.3)

[Compare
Source](https://redirect.github.com/aws-actions/configure-aws-credentials/compare/v4.0.2...v4.0.3)

##### Features

- added release-please action config
([0f88004](https://redirect.github.com/aws-actions/configure-aws-credentials/commit/0f88004d9c27e0bdbbc254b3f7c8053cb38f04d7))

##### Bug Fixes

- add id-token permission to automerge
([97834a4](https://redirect.github.com/aws-actions/configure-aws-credentials/commit/97834a484a5ab3c40fa9e2eb40fcf8041105a573))
- cpy syntax on npm package
([#&#8203;1195](https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1195))
([83b5a56](https://redirect.github.com/aws-actions/configure-aws-credentials/commit/83b5a565471214aec459e234bef606339fe07111))
- force push packaged files to main
([bfd2185](https://redirect.github.com/aws-actions/configure-aws-credentials/commit/bfd218503eb87938c29603a551e19c6b594f5fe5))

##### Miscellaneous Chores

- release 4.0.3
([ca00fd4](https://redirect.github.com/aws-actions/configure-aws-credentials/commit/ca00fd4d3842ad58c3c21ebfe69defa1f0e7bdc4))

</details>

<details>
<summary>docker/build-push-action (docker/build-push-action)</summary>

###
[`v6.13.0`](https://redirect.github.com/docker/build-push-action/releases/tag/v6.13.0)

[Compare
Source](https://redirect.github.com/docker/build-push-action/compare/v6.12.0...v6.13.0)

- Bump
[@&#8203;docker/actions-toolkit](https://redirect.github.com/docker/actions-toolkit)
from 0.51.0 to 0.53.0 in
[https://github.com/docker/build-push-action/pull/1308](https://redirect.github.com/docker/build-push-action/pull/1308)

**Full Changelog**:
docker/build-push-action@v6.12.0...v6.13.0

###
[`v6.12.0`](https://redirect.github.com/docker/build-push-action/releases/tag/v6.12.0)

[Compare
Source](https://redirect.github.com/docker/build-push-action/compare/v6.11.0...v6.12.0)

- Bump
[@&#8203;docker/actions-toolkit](https://redirect.github.com/docker/actions-toolkit)
from 0.49.0 to 0.51.0 in
[https://github.com/docker/build-push-action/pull/1300](https://redirect.github.com/docker/build-push-action/pull/1300)

**Full Changelog**:
docker/build-push-action@v6.11.0...v6.12.0

</details>

<details>
<summary>github/codeql-action (github/codeql-action)</summary>

###
[`v3.28.8`](https://redirect.github.com/github/codeql-action/releases/tag/v3.28.8)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.28.7...v3.28.8)

### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

#### 3.28.8 - 29 Jan 2025

- Enable support for Kotlin 2.1.10 when running with CodeQL CLI v2.20.3.
[#&#8203;2744](https://redirect.github.com/github/codeql-action/pull/2744)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.28.8/CHANGELOG.md)
for more information.

###
[`v3.28.7`](https://redirect.github.com/github/codeql-action/releases/tag/v3.28.7)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.28.6...v3.28.7)

### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

#### 3.28.7 - 29 Jan 2025

No user facing changes.

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.28.7/CHANGELOG.md)
for more information.

###
[`v3.28.6`](https://redirect.github.com/github/codeql-action/releases/tag/v3.28.6)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.28.5...v3.28.6)

### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

#### 3.28.6 - 27 Jan 2025

- Re-enable debug artifact upload for CLI versions 2.20.3 or greater.
[#&#8203;2726](https://redirect.github.com/github/codeql-action/pull/2726)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.28.6/CHANGELOG.md)
for more information.

###
[`v3.28.5`](https://redirect.github.com/github/codeql-action/releases/tag/v3.28.5)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.28.4...v3.28.5)

### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

#### 3.28.5 - 24 Jan 2025

- Update default CodeQL bundle version to 2.20.3.
[#&#8203;2717](https://redirect.github.com/github/codeql-action/pull/2717)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.28.5/CHANGELOG.md)
for more information.

###
[`v3.28.4`](https://redirect.github.com/github/codeql-action/releases/tag/v3.28.4)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.28.3...v3.28.4)

##### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

##### 3.28.4 - 23 Jan 2025

No user facing changes.

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.28.4/CHANGELOG.md)
for more information.

###
[`v3.28.3`](https://redirect.github.com/github/codeql-action/releases/tag/v3.28.3)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.28.2...v3.28.3)

##### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

##### 3.28.3 - 22 Jan 2025

- Update default CodeQL bundle version to 2.20.2.
[#&#8203;2707](https://redirect.github.com/github/codeql-action/pull/2707)
- Fix an issue downloading the CodeQL Bundle from a GitHub Enterprise
Server instance which occurred when the CodeQL Bundle had been synced to
the instance using the [CodeQL Action sync
tool](https://redirect.github.com/github/codeql-action-sync-tool) and
the Actions runner did not have Zstandard installed.
[#&#8203;2710](https://redirect.github.com/github/codeql-action/pull/2710)
- Uploading debug artifacts for CodeQL analysis is temporarily disabled.
[#&#8203;2712](https://redirect.github.com/github/codeql-action/pull/2712)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.28.3/CHANGELOG.md)
for more information.

###
[`v3.28.2`](https://redirect.github.com/github/codeql-action/releases/tag/v3.28.2)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.28.1...v3.28.2)

##### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

##### 3.28.2 - 21 Jan 2025

No user facing changes.

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.28.2/CHANGELOG.md)
for more information.

###
[`v3.28.1`](https://redirect.github.com/github/codeql-action/releases/tag/v3.28.1)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.28.0...v3.28.1)

##### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

##### 3.28.1 - 10 Jan 2025

- CodeQL Action v2 is now deprecated, and is no longer updated or
supported. For better performance, improved security, and new features,
upgrade to v3. For more information, see [this changelog
post](https://github.blog/changelog/2025-01-10-code-scanning-codeql-action-v2-is-now-deprecated/).
[#&#8203;2677](https://redirect.github.com/github/codeql-action/pull/2677)
- Update default CodeQL bundle version to 2.20.1.
[#&#8203;2678](https://redirect.github.com/github/codeql-action/pull/2678)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.28.1/CHANGELOG.md)
for more information.

</details>

<details>
<summary>hoverkraft-tech/compose-action
(hoverkraft-tech/compose-action)</summary>

###
[`v2.2.0`](https://redirect.github.com/hoverkraft-tech/compose-action/releases/tag/v2.2.0)

[Compare
Source](https://redirect.github.com/hoverkraft-tech/compose-action/compare/v2.1.0...v2.2.0)

#### Release Summary

This release introduces a new feature allowing users to specify Docker
flags as an input, enhancing flexibility in Docker Compose operations. A
bug fix ensures that Docker Compose output is now printed only in debug
mode, reducing unnecessary log verbosity. Additionally, documentation
has been updated to reflect the latest actions and workflows.
Dependencies have been updated for GitHub Actions to maintain
compatibility and security.

No breaking changes were introduced in this release.

#### What's Changed

- chore(deps): bump the actions-dependencies group across 1 directory
with 2 updates by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/hoverkraft-tech/compose-action/pull/107](https://redirect.github.com/hoverkraft-tech/compose-action/pull/107)
- fix: print docker compose output to debug only by
[@&#8203;neilime](https://redirect.github.com/neilime) in
[https://github.com/hoverkraft-tech/compose-action/pull/118](https://redirect.github.com/hoverkraft-tech/compose-action/pull/118)
- feat: add docker flags input by
[@&#8203;neilime](https://redirect.github.com/neilime) in
[https://github.com/hoverkraft-tech/compose-action/pull/115](https://redirect.github.com/hoverkraft-tech/compose-action/pull/115)
- docs: update actions and workflows documentation by
[@&#8203;hoverkraft-bot](https://redirect.github.com/hoverkraft-bot) in
[https://github.com/hoverkraft-tech/compose-action/pull/121](https://redirect.github.com/hoverkraft-tech/compose-action/pull/121)
- chore(deps): bump the github-actions-dependencies group with 2 updates
by [@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/hoverkraft-tech/compose-action/pull/119](https://redirect.github.com/hoverkraft-tech/compose-action/pull/119)

**Full Changelog**:
hoverkraft-tech/compose-action@v2.1.0...v2.2.0

###
[`v2.1.0`](https://redirect.github.com/hoverkraft-tech/compose-action/releases/tag/v2.1.0)

[Compare
Source](https://redirect.github.com/hoverkraft-tech/compose-action/compare/v2.0.2...v2.1.0)

##### Release Summary

This release introduces a new feature that supports specifying the
Compose version, enhancing compatibility and usability. Documentation
for actions and workflows has been updated, along with multiple
dependency upgrades across npm and GitHub Actions to improve
performance, security, and compatibility. Minor lint issues in
documentation have been fixed to ensure compliance with standards.
Development dependencies were updated extensively, including updates to
`eslint-plugin-jsonc`, `eslint-plugin-github`, and other packages,
ensuring a more robust development environment.

No Breaking changes

##### What's Changed

- chore(deps-dev): bump
[@&#8203;vercel/ncc](https://redirect.github.com/vercel/ncc) from 0.38.1
to 0.38.2 in the npm-dev-dependencies group by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/hoverkraft-tech/compose-action/pull/88](https://redirect.github.com/hoverkraft-tech/compose-action/pull/88)
- chore(deps): bump docker-compose from 0.24.8 to 1.1.0 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/hoverkraft-tech/compose-action/pull/90](https://redirect.github.com/hoverkraft-tech/compose-action/pull/90)
- chore(deps): bump hoverkraft-tech/ci-github-nodejs from 0.6.0 to 0.7.0
in the github-actions-dependencies group by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/hoverkraft-tech/compose-action/pull/92](https://redirect.github.com/hoverkraft-tech/compose-action/pull/92)
- feat: support compose version by
[@&#8203;neilime](https://redirect.github.com/neilime) in
[https://github.com/hoverkraft-tech/compose-action/pull/93](https://redirect.github.com/hoverkraft-tech/compose-action/pull/93)
- docs: update actions and workflows documentation by
[@&#8203;hoverkraft-bot](https://redirect.github.com/hoverkraft-bot) in
[https://github.com/hoverkraft-tech/compose-action/pull/94](https://redirect.github.com/hoverkraft-tech/compose-action/pull/94)
- chore(deps-dev): bump eslint-plugin-jsonc from 2.16.0 to 2.17.0 in the
npm-dev-dependencies group by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/hoverkraft-tech/compose-action/pull/96](https://redirect.github.com/hoverkraft-tech/compose-action/pull/96)
- chore(deps-dev): bump eslint-plugin-jsonc from 2.17.0 to 2.18.1 in the
npm-dev-dependencies group by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/hoverkraft-tech/compose-action/pull/98](https://redirect.github.com/hoverkraft-tech/compose-action/pull/98)
- chore(docs): fix lint issues by
[@&#8203;neilime](https://redirect.github.com/neilime) in
[https://github.com/hoverkraft-tech/compose-action/pull/100](https://redirect.github.com/hoverkraft-tech/compose-action/pull/100)
- chore(deps-dev): bump the npm-dev-dependencies group with 3 updates by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/hoverkraft-tech/compose-action/pull/101](https://redirect.github.com/hoverkraft-tech/compose-action/pull/101)
- chore(deps-dev): bump eslint-plugin-github from 5.1.1 to 5.1.3 in the
npm-dev-dependencies group by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/hoverkraft-tech/compose-action/pull/102](https://redirect.github.com/hoverkraft-tech/compose-action/pull/102)
- chore(deps-dev): bump eslint-plugin-github from 5.1.3 to 5.1.4 in the
npm-dev-dependencies group by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/hoverkraft-tech/compose-action/pull/103](https://redirect.github.com/hoverkraft-tech/compose-action/pull/103)
- chore(deps): bump hoverkraft-tech/ci-github-common from 0.15.0 to
0.16.0 in the github-actions-dependencies group by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/hoverkraft-tech/compose-action/pull/105](https://redirect.github.com/hoverkraft-tech/compose-action/pull/105)
- chore(deps-dev): bump eslint-plugin-github from 5.1.4 to 5.1.5 in the
npm-dev-dependencies group by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/hoverkraft-tech/compose-action/pull/106](https://redirect.github.com/hoverkraft-tech/compose-action/pull/106)
- chore: move
[@&#8203;ts-dev-tools](https://redirect.github.com/ts-dev-tools) to dev
deps by [@&#8203;neilime](https://redirect.github.com/neilime) in
[https://github.com/hoverkraft-tech/compose-action/pull/108](https://redirect.github.com/hoverkraft-tech/compose-action/pull/108)

**Full Changelog**:
hoverkraft-tech/compose-action@v2.0.2...v2.1.0

###
[`v2.0.2`](https://redirect.github.com/hoverkraft-tech/compose-action/releases/tag/v2.0.2)

[Compare
Source](https://redirect.github.com/hoverkraft-tech/compose-action/compare/v2.0.1...v2.0.2)

##### Release Summary

This release introduces new tests for the `attach-dependencies` feature,
along with support for absolute paths in the `compose-file` input.
Documentation for actions and workflows has been updated, and several
dependencies related to GitHub actions and npm development have been
bumped to ensure better performance and stability.

No breaking changes have been introduced.

##### What's Changed

- ci: add test for attach-dependencies by
[@&#8203;neilime](https://redirect.github.com/neilime) in
[https://github.com/hoverkraft-tech/compose-action/pull/75](https://redirect.github.com/hoverkraft-tech/compose-action/pull/75)
- chore(deps): bump hoverkraft-tech/ci-github-common from 0.13.2 to
0.13.3 in the github-actions-dependencies group by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/hoverkraft-tech/compose-action/pull/77](https://redirect.github.com/hoverkraft-tech/compose-action/pull/77)
- docs: update actions and workflows documentation by
[@&#8203;hoverkraft-bot](https://redirect.github.com/hoverkraft-bot) in
[https://github.com/hoverkraft-tech/compose-action/pull/78](https://redirect.github.com/hoverkraft-tech/compose-action/pull/78)
- chore(deps): bump hoverkraft-tech/ci-github-common from 0.13.3 to
0.14.0 in the github-actions-dependencies group by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/hoverkraft-tech/compose-action/pull/79](https://redirect.github.com/hoverkraft-tech/compose-action/pull/79)
- chore(deps): bump hoverkraft-tech/ci-github-nodejs from 0.5.1 to 0.6.0
in the github-actions-dependencies group by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/hoverkraft-tech/compose-action/pull/80](https://redirect.github.com/hoverkraft-tech/compose-action/pull/80)
- chore(deps-dev): bump eslint-plugin-github from 5.0.1 to 5.0.2 in the
npm-dev-dependencies group by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/hoverkraft-tech/compose-action/pull/84](https://redirect.github.com/hoverkraft-tech/compose-action/pull/84)
- fix: support absolute path for compose-file input by
[@&#8203;neilime](https://redirect.github.com/neilime) in
[https://github.com/hoverkraft-tech/compose-action/pull/85](https://redirect.github.com/hoverkraft-tech/compose-action/pull/85)
- docs: update actions and workflows documentation by
[@&#8203;hoverkraft-bot](https://redirect.github.com/hoverkraft-bot) in
[https://github.com/hoverkraft-tech/compose-action/pull/86](https://redirect.github.com/hoverkraft-tech/compose-action/pull/86)
- chore(deps): bump hoverkraft-tech/ci-github-common from 0.14.0 to
0.15.0 in the github-actions-dependencies group by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/hoverkraft-tech/compose-action/pull/87](https://redirect.github.com/hoverkraft-tech/compose-action/pull/87)

**Full Changelog**:
hoverkraft-tech/compose-action@v2.0.1...v2.0.2

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "* * 1 * *" (UTC), Automerge - At any
time (no schedule defined).

🚦 **Automerge**: Enabled.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the
rebase/retry checkbox.

👻 **Immortal**: This PR will be recreated if closed unmerged. Get
[config
help](https://redirect.github.com/renovatebot/renovate/discussions) if
that's undesired.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR was generated by [Mend Renovate](https://mend.io/renovate/).
View the [repository job
log](https://developer.mend.io/github/Hapag-Lloyd/Workflow-Templates).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4xNDUuMCIsInVwZGF0ZWRJblZlciI6IjM5LjE0NS4wIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJkZXBlbmRlbmN5Il19-->

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>

Author: renovate[bot]

.github/workflows/default_linter_callable.yml

@@ -88,7 +88,7 @@ jobs:
     needs: find-changes-for-shell-output
     if: needs.find-changes-for-shell-output.outputs.workflow == 'true'
     container:
-      image: rhysd/actionlint:1.7.6@sha256:e3856d413f923accc4120884ff79f6bdba3dd53fd42884d325f21af61cc15ce0
+      image: rhysd/actionlint:1.7.7@sha256:887a259a5a534f3c4f36cb02dca341673c6089431057242cdc931e9f133147e9
       options: --cpus 1 --user root
     steps:
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

.github/workflows/default_pull_request_callable.yml

@@ -21,7 +21,7 @@ jobs:
     name: Validate PR title
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/create-github-app-token@c1a285145b9d317df6ced56c09f525b5c2b6f755 # v1.11.1
+      - uses: actions/create-github-app-token@136412a57a7081aa63c935a2cc2918f76c34f514 # v1.11.2
         id: app-token
         with:
           app-id: ${{ vars.GET_TOKEN_APP_ID }}

.github/workflows/default_release_callable.yml

@@ -35,7 +35,7 @@ jobs:
           mv .release/.releaserc.yml .releaserc.yml
 
       - name: Setup Node.js
-        uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af # v4.1.0
+        uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4.2.0
         with:
           node-version: "lts/*"
 

.github/workflows/default_release_dry_run_callable.yml

@@ -35,7 +35,7 @@ jobs:
           mv .release/.releaserc.yml .releaserc.yml
 
       - name: Setup Node.js
-        uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af # v4.1.0
+        uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4.2.0
         with:
           node-version: "lts/*"
 

.github/workflows/default_stale_callable.yml

@@ -15,7 +15,7 @@ jobs:
   stale:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/stale@28ca1036281a5e5922ead5184a1bbf96e5fc984e # v9.0.0
+      - uses: actions/stale@5bef64f19d7facfb25b37b414482c7164d639639 # v9.1.0
         with:
           # yamllint disable rule:line-length
           stale-issue-message: "This issue is stale because it has been open 30 days with no activity. Remove stale label or comment or this will be closed in 10 days."

.github/workflows/docker_dockerhub_release_callable.yml

@@ -61,7 +61,7 @@ jobs:
           username: ${{ secrets.DOCKERHUB_USERNAME }}
           password: ${{ secrets.DOCKERHUB_TOKEN }}
       - name: Build Image
-        uses: docker/build-push-action@b32b51a8eda65d6793cd0494a773d4f6bcef32dc # v6.11.0
+        uses: docker/build-push-action@ca877d9245402d1537745e0e356eab47c3520991 # v6.13.0
         with:
           context: .
           load: true
@@ -75,12 +75,12 @@ jobs:
           format: "sarif"
           output: "trivy-results.sarif"
       - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3.28.0
+        uses: github/codeql-action/upload-sarif@dd746615b3b9d728a6a37ca2045b68ca76d4841a # v3.28.8
         if: ${{ inputs.upload-security-scan-results }}
         with:
           sarif_file: "trivy-results.sarif"
       - name: Build and push image
-        uses: docker/build-push-action@b32b51a8eda65d6793cd0494a773d4f6bcef32dc # v6.11.0
+        uses: docker/build-push-action@ca877d9245402d1537745e0e356eab47c3520991 # v6.13.0
         with:
           context: .
           push: ${{ inputs.push }}

.github/workflows/maven_java_callable.yml

@@ -17,7 +17,7 @@ jobs:
     steps:
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       - name: Set up JDK 21
-        uses: actions/setup-java@7a6d8a8234af8eb26422e24e3006232cccaa061b # v4.6.0
+        uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # v4.7.0
         with:
           java-version: "21"
           distribution: "temurin"

.github/workflows/maven_release_callable.yml

@@ -43,14 +43,14 @@ jobs:
           mv .release/.releaserc.yml .releaserc.yml
 
       - name: Set up JDK 21
-        uses: actions/setup-java@7a6d8a8234af8eb26422e24e3006232cccaa061b # v4.6.0
+        uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # v4.7.0
         with:
           java-version: "21"
           distribution: "temurin"
           cache: maven
 
       - name: Setup Node.js
-        uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af # v4.1.0
+        uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4.2.0
         with:
           node-version: "lts/*"
 

.github/workflows/maven_release_dry_run_callable.yml

@@ -43,14 +43,14 @@ jobs:
           mv .release/.releaserc.yml .releaserc.yml
 
       - name: Set up JDK 21
-        uses: actions/setup-java@7a6d8a8234af8eb26422e24e3006232cccaa061b # v4.6.0
+        uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # v4.7.0
         with:
           java-version: "21"
           distribution: "temurin"
           cache: maven
 
       - name: Setup Node.js
-        uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af # v4.1.0
+        uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4.2.0
         with:
           node-version: "lts/*"
 

.github/workflows/python_pypi_publish_callable.yml

@@ -35,11 +35,11 @@ jobs:
     name: Build distribution 📦
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           fetch-depth: 0
       - name: Set up Python ${{ inputs.python-version }}
-        uses: actions/setup-python@65d7f2d534ac1bc67fcd62888c5f4f3d2cb2b236 # v4.7.1
+        uses: actions/setup-python@b64ffcaf5b410884ad320a9cfac8866006a109aa # v4.8.0
         with:
           python-version: ${{ inputs.python-version }}
           cache: "pip"
@@ -50,7 +50,7 @@ jobs:
       - name: Build a binary wheel and a source tarball
         run: python3 -m build
       - name: Store the distribution packages
-        uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4.5.0
+        uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
         with:
           name: python-package-distributions
           path: dist/