Bump the github-actions group with 3 updates (#175)

dependabot[bot] · web-flow · commit 1ae98e14d834 · 2026-03-18T12:28:12.000-04:00
Signed-off-by: dependabot[bot] &lt;support@github.com&gt;
Co-authored-by: dependabot[bot] &lt;49699333+dependabot[bot]@users.noreply.github.com&gt;
diff --git a/.github/workflows/python-tests.yml b/.github/workflows/python-tests.yml
@@ -33,7 +33,7 @@ jobs:
           python-version: ${{ matrix.python-version }}
 
       - name: Install uv
-        uses: astral-sh/setup-uv@6ee6290f1cbc4156c0bdd66691b2c144ef8df19a # v7.4.0
+        uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0
         with:
           enable-cache: true
           cache-dependency-glob: "pyproject.toml"
@@ -106,7 +106,7 @@ jobs:
       # Publish general statistics for linting, test success, and code coverage as well as detailed tests results
       - name: Publish Consolidated Results to PR
         if: github.event_name == 'pull_request'
-        uses: marocchino/sticky-pull-request-comment@773744901bac0e8cbb5a0dc842800d45e9b2b405 # v2.9.4
+        uses: marocchino/sticky-pull-request-comment@70d2764d1a7d5d9560b100cbea0077fc8f633987 # v3.0.2
         with:
           header: python-results-${{ matrix.python-version }}
           message: |
diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
@@ -53,6 +53,6 @@ jobs:
 
       # Optional: populates Security > Code scanning alerts with per-check findings.
       - name: Upload to code-scanning
-        uses: github/codeql-action/upload-sarif@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
+        uses: github/codeql-action/upload-sarif@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v4.33.0
         with:
           sarif_file: results.sarif
