Update actions

Author: moubctez

.github/workflows/sbom.yml

@@ -32,7 +32,7 @@ jobs:
           submodules: recursive
 
       - name: Create SBOM with Trivy
-        uses: aquasecurity/trivy-action@0.35.0
+        uses: aquasecurity/trivy-action@0.36.0
         env:
           TRIVY_SHOW_SUPPRESSED: 1
           TRIVY_IGNOREFILE: "./.trivyignore.yaml"
@@ -45,7 +45,7 @@ jobs:
           scanners: "vuln"
 
       - name: Create security advisory file with Trivy
-        uses: aquasecurity/trivy-action@0.35.0
+        uses: aquasecurity/trivy-action@0.36.0
         env:
           TRIVY_SHOW_SUPPRESSED: 1
           TRIVY_IGNOREFILE: "./.trivyignore.yaml"

.github/workflows/test.yml

@@ -44,7 +44,7 @@ jobs:
           submodules: recursive
 
       - name: Scan code with Trivy
-        uses: aquasecurity/trivy-action@0.35.0
+        uses: aquasecurity/trivy-action@0.36.0
         env:
           TRIVY_SHOW_SUPPRESSED: 1
           TRIVY_IGNOREFILE: "./.trivyignore.yaml"

.github/workflows/update-pnpm-hash.yaml

@@ -79,7 +79,7 @@ jobs:
       # Only commit when the hash actually changed; skip if it was already correct.
       - name: Commit updated hash
         if: steps.hash.outputs.current != steps.hash.outputs.new
-        uses: actions/github-script@v7
+        uses: actions/github-script@v9
         env:
           OLD_HASH: ${{ steps.hash.outputs.current }}
           NEW_HASH: ${{ steps.hash.outputs.new }}