Bump the all-actions group across 1 directory with 16 updates

[dependabot]

Bumps the all-actions group with 16 updates in the / directory:

Package	From	To
actions/checkout	4	6
tj-actions/changed-files	47.0.5	47.0.6
dorny/paths-filter	3.0.2	4.0.1
ruby/setup-ruby	1.290.0	1.306.0
actions/setup-go	6.3.0	6.4.0
actions/dependency-review-action	4.9.0	5.0.0
actions/create-github-app-token	2.2.1	3.1.1
rubygems/configure-rubygems-credentials	1.0.0	2.0.0
sigstore/cosign-installer	4.0.0	4.1.2
docker/login-action	4.0.0	4.1.0
actions/labeler	6.0.1	6.1.0
actions/cache	5.0.3	5.0.5
actions/upload-artifact	7.0.0	7.0.1
actions/configure-pages	5	6
actions/upload-pages-artifact	3	5
zizmorcore/zizmor-action	0.5.1	0.5.3

Updates actions/checkout from 4 to 6

Release notes

Sourced from actions/checkout's releases.

v6.0.0

What's Changed

• Update README to include Node.js 24 support details and requirements by @​salmanmkc in actions/checkout#2248
• Persist creds to a separate file by @​ericsciple in actions/checkout#2286
• v6-beta by @​ericsciple in actions/checkout#2298
• update readme/changelog for v6 by @​ericsciple in actions/checkout#2311

Full Changelog: actions/checkout@v5.0.0...v6.0.0

v6-beta

What's Changed

Updated persist-credentials to store the credentials under $RUNNER_TEMP instead of directly in the local git config.

This requires a minimum Actions Runner version of v2.329.0 to access the persisted credentials for Docker container action scenarios.

v5.0.1

What's Changed

• Port v6 cleanup to v5 by @​ericsciple in actions/checkout#2301

Full Changelog: actions/checkout@v5...v5.0.1

v5.0.0

What's Changed

• Update actions checkout to use node 24 by @​salmanmkc in actions/checkout#2226
• Prepare v5.0.0 release by @​salmanmkc in actions/checkout#2238

⚠️ Minimum Compatible Runner Version

v2.327.1
Release Notes

Make sure your runner is updated to this version or newer to use this release.

Full Changelog: actions/checkout@v4...v5.0.0

v4.3.1

What's Changed

• Port v6 cleanup to v4 by @​ericsciple in actions/checkout#2305

Full Changelog: actions/checkout@v4...v4.3.1

v4.3.0

What's Changed

• docs: update README.md by @​motss in actions/checkout#1971
• Add internal repos for checking out multiple repositories by @​mouismail in actions/checkout#1977
• Documentation update - add recommended permissions to Readme by @​benwells in actions/checkout#2043

... (truncated)

Commits

• de0fac2 Fix tag handling: preserve annotations and explicit fetch-tags (#2356)
• 064fe7f Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...
• 8e8c483 Clarify v6 README (#2328)
• 033fa0d Add worktree support for persist-credentials includeIf (#2327)
• c2d88d3 Update all references from v5 and v4 to v6 (#2314)
• 1af3b93 update readme/changelog for v6 (#2311)
• 71cf226 v6-beta (#2298)
• 069c695 Persist creds to a separate file (#2286)
• ff7abcd Update README to include Node.js 24 support details and requirements (#2248)
• 08c6903 Prepare v5.0.0 release (#2238)
• Additional commits viewable in compare view

Updates tj-actions/changed-files from 47.0.5 to 47.0.6

Release notes

Sourced from tj-actions/changed-files's releases.

v47.0.6

What's Changed

• Upgraded to v47.0.5 by @​github-actions[bot] in tj-actions/changed-files#2816
• Updated README.md by @​github-actions[bot] in tj-actions/changed-files#2817
• chore(deps): bump actions/setup-node from 6.2.0 to 6.3.0 by @​dependabot[bot] in tj-actions/changed-files#2818
• chore(deps-dev): bump @​types/node from 25.3.3 to 25.3.5 by @​dependabot[bot] in tj-actions/changed-files#2820
• chore(deps): bump github/codeql-action from 4.32.5 to 4.32.6 by @​dependabot[bot] in tj-actions/changed-files#2819
• chore(deps-dev): bump @​types/node from 25.3.5 to 25.5.0 by @​dependabot[bot] in tj-actions/changed-files#2825
• chore(deps): bump actions/download-artifact from 8.0.0 to 8.0.1 by @​dependabot[bot] in tj-actions/changed-files#2824
• chore(deps): bump github/codeql-action from 4.32.6 to 4.35.1 by @​dependabot[bot] in tj-actions/changed-files#2834
• chore(deps-dev): bump eslint-plugin-jest from 29.15.0 to 29.15.1 by @​dependabot[bot] in tj-actions/changed-files#2831
• chore(deps): bump yaml from 2.8.2 to 2.8.3 by @​dependabot[bot] in tj-actions/changed-files#2830
• chore(deps): bump nrwl/nx-set-shas from 4.4.0 to 5.0.1 by @​dependabot[bot] in tj-actions/changed-files#2829
• chore(deps-dev): bump jest from 30.2.0 to 30.3.0 by @​dependabot[bot] in tj-actions/changed-files#2822
• chore(deps): bump github/codeql-action from 4.35.1 to 4.35.2 by @​dependabot[bot] in tj-actions/changed-files#2849
• chore(deps-dev): bump prettier from 3.8.1 to 3.8.3 by @​dependabot[bot] in tj-actions/changed-files#2848
• chore(deps-dev): bump @​types/node from 25.5.0 to 25.6.0 by @​dependabot[bot] in tj-actions/changed-files#2846
• chore(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 by @​dependabot[bot] in tj-actions/changed-files#2844
• chore(deps): bump peter-evans/create-pull-request from 8.1.0 to 8.1.1 by @​dependabot[bot] in tj-actions/changed-files#2843
• chore(deps): bump lodash from 4.17.23 to 4.18.1 by @​dependabot[bot] in tj-actions/changed-files#2837

Full Changelog: tj-actions/changed-files@v47.0.5...v47.0.6

Changelog

Sourced from tj-actions/changed-files's changelog.

Changelog

47.0.6 - (2026-04-18)

🔄 Update

• Updated README.md (#2817)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@​users.noreply.github.com> Co-authored-by: Tonye Jack jtonye@ymail.com (c23d52b) - (github-actions[bot])

⚙️ Miscellaneous Tasks

• deps: Bump lodash from 4.17.23 to 4.18.1 (#2837) (9426d40) - (dependabot[bot])
• deps: Bump peter-evans/create-pull-request from 8.1.0 to 8.1.1 (#2843) (32de080) - (dependabot[bot])
• deps: Bump actions/upload-artifact from 7.0.0 to 7.0.1 (#2844) (2487d12) - (dependabot[bot])
• deps-dev: Bump @​types/node from 25.5.0 to 25.6.0 (#2846) (cef85a3) - (dependabot[bot])
• deps-dev: Bump prettier from 3.8.1 to 3.8.3 (#2848) (7b082de) - (dependabot[bot])
• deps: Bump github/codeql-action from 4.35.1 to 4.35.2 (#2849) (07224ca) - (dependabot[bot])
• deps-dev: Bump jest from 30.2.0 to 30.3.0 (#2822) (2bb1357) - (dependabot[bot])
• deps: Bump nrwl/nx-set-shas from 4.4.0 to 5.0.1 (#2829) (cc98117) - (dependabot[bot])
• deps: Bump yaml from 2.8.2 to 2.8.3 (#2830) (786e421) - (dependabot[bot])
• deps-dev: Bump eslint-plugin-jest from 29.15.0 to 29.15.1 (#2831) (726b41b) - (dependabot[bot])
• deps: Bump github/codeql-action from 4.32.6 to 4.35.1 (#2834) (2c3585e) - (dependabot[bot])
• deps: Bump actions/download-artifact from 8.0.0 to 8.0.1 (#2824) (3d37a7f) - (dependabot[bot])
• deps-dev: Bump @​types/node from 25.3.5 to 25.5.0 (#2825) (445b0eb) - (dependabot[bot])
• deps: Bump github/codeql-action from 4.32.5 to 4.32.6 (#2819) (4f892cd) - (dependabot[bot])
• deps-dev: Bump @​types/node from 25.3.3 to 25.3.5 (#2820) (6118651) - (dependabot[bot])
• deps: Bump actions/setup-node from 6.2.0 to 6.3.0 (#2818) (e517d7a) - (dependabot[bot])

⬆️ Upgrades

• Upgraded to v47.0.5 (#2816)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@​users.noreply.github.com> Co-authored-by: Tonye Jack jtonye@ymail.com (4750530) - (github-actions[bot])

47.0.5 - (2026-03-03)

🔄 Update

• Updated README.md (#2805)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@​users.noreply.github.com> (35dace0) - (github-actions[bot])

• Updated README.md (#2803)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@​users.noreply.github.com> Co-authored-by: Tonye Jack jtonye@ymail.com (9ee99eb) - (github-actions[bot])

⚙️ Miscellaneous Tasks

... (truncated)

Commits

• 9426d40 chore(deps): bump lodash from 4.17.23 to 4.18.1 (#2837)
• 32de080 chore(deps): bump peter-evans/create-pull-request from 8.1.0 to 8.1.1 (#2843)
• 2487d12 chore(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 (#2844)
• cef85a3 chore(deps-dev): bump @​types/node from 25.5.0 to 25.6.0 (#2846)
• 7b082de chore(deps-dev): bump prettier from 3.8.1 to 3.8.3 (#2848)
• 07224ca chore(deps): bump github/codeql-action from 4.35.1 to 4.35.2 (#2849)
• 2bb1357 chore(deps-dev): bump jest from 30.2.0 to 30.3.0 (#2822)
• cc98117 chore(deps): bump nrwl/nx-set-shas from 4.4.0 to 5.0.1 (#2829)
• 786e421 chore(deps): bump yaml from 2.8.2 to 2.8.3 (#2830)
• 726b41b chore(deps-dev): bump eslint-plugin-jest from 29.15.0 to 29.15.1 (#2831)
• Additional commits viewable in compare view

Updates dorny/paths-filter from 3.0.2 to 4.0.1

Release notes

Sourced from dorny/paths-filter's releases.

v4.0.1

What's Changed

• Support merge queue by @​masaru-iritani in dorny/paths-filter#255

New Contributors

• @​masaru-iritani made their first contribution in dorny/paths-filter#255

Full Changelog: dorny/paths-filter@v4.0.0...v4.0.1

v4.0.0

What's Changed

• feat: update action runtime to node24 by @​saschabratton in dorny/paths-filter#294

New Contributors

• @​saschabratton made their first contribution in dorny/paths-filter#294

Full Changelog: dorny/paths-filter@v3.0.3...v4.0.0

v3.0.3

What's Changed

• Add missing predicate-quantifier by @​wardpeet in dorny/paths-filter#279

New Contributors

• @​wardpeet made their first contribution in dorny/paths-filter#279

Full Changelog: dorny/paths-filter@v3...v3.0.3

Changelog

Sourced from dorny/paths-filter's changelog.

Changelog

v4.0.0

• Update action runtime to node24

v3.0.3

• Add missing predicate-quantifier

v3.0.2

• Add config parameter for predicate quantifier

v3.0.1

• Compare base and ref when token is empty

v3.0.0

• Update to Node.js 20
• Update all dependencies

v2.11.1

• Update @​actions/core to v1.10.0 - Fixes warning about deprecated set-output
• Document need for pull-requests: read permission
• Updating to actions/checkout@v3

v2.11.0

• Set list-files input parameter as not required
• Update Node.js
• Fix incorrect handling of Unicode characters in exec()
• Use Octokit pagination
• Updates real world links

v2.10.2

• Fix getLocalRef() returns wrong ref

v2.10.1

• Improve robustness of change detection

v2.10.0

• Add ref input parameter
• Fix change detection in PR when pullRequest.changed_files is incorrect

v2.9.3

• Fix change detection when base is a tag

v2.9.2

• Fix fetching git history

v2.9.1

• Fix fetching git history + fallback to unshallow repo

v2.9.0

... (truncated)

Commits

• fbd0ab8 feat: add merge_group event support
• efb1da7 feat: add dist/ freshness check to PR workflow
• d8f7b06 Merge pull request #302 from dorny/issue-299
• addbc14 Update README for v4
• 9d7afb8 Update CHANGELOG for v4.0.0
• 782470c Merge branch 'releases/v3'
• d1c1ffe Update CHANGELOG for v3.0.3
• ce10459 Merge pull request #294 from saschabratton/master
• 5f40380 feat: update action runtime to node24
• 668c092 Merge pull request #279 from wardpeet/patch-1
• Additional commits viewable in compare view

Updates ruby/setup-ruby from 1.290.0 to 1.306.0

Release notes

Sourced from ruby/setup-ruby's releases.

v1.306.0

What's Changed

• Add truffleruby-34.0.1,truffleruby+graalvm-34.0.1 by @​ruby-builder-bot in ruby/setup-ruby#909

Full Changelog: ruby/setup-ruby@v1.305.0...v1.306.0

v1.305.0

What's Changed

• Update CRuby releases on Windows by @​ruby-builder-bot in ruby/setup-ruby#908

Full Changelog: ruby/setup-ruby@v1.304.0...v1.305.0

v1.304.0

What's Changed

• Add jruby-10.1.0.0 by @​ruby-builder-bot in ruby/setup-ruby#906

Full Changelog: ruby/setup-ruby@v1.303.0...v1.304.0

v1.303.0

What's Changed

• Add ruby-4.0.3 by @​ruby-builder-bot in ruby/setup-ruby#903

Full Changelog: ruby/setup-ruby@v1.302.0...v1.303.0

v1.302.0

Full Changelog: ruby/setup-ruby@v1.301.0...v1.302.0

v1.301.0

What's Changed

• Add truffleruby-34.0.0,truffleruby+graalvm-34.0.0 by @​ruby-builder-bot in ruby/setup-ruby#901

Full Changelog: ruby/setup-ruby@v1.300.0...v1.301.0

v1.300.0

What's Changed

• Refactor matrix script by @​ntkme in ruby/setup-ruby#897
• Add jruby-10.0.5.0 by @​ruby-builder-bot in ruby/setup-ruby#900

Full Changelog: ruby/setup-ruby@v1.299.0...v1.300.0

v1.299.0

What's Changed

• Update CRuby releases on Windows by @​ruby-builder-bot in ruby/setup-ruby#896

... (truncated)

Commits

• c4e5b13 Add truffleruby-34.0.1,truffleruby+graalvm-34.0.1
• 0cb964f Update CRuby releases on Windows
• 94e4d89 Add jruby-10.1.0.0
• 60ecfba Add ruby-4.0.3
• 7372622 Give a better error for TruffleRuby 34+ on macOS Intel
• 4c56a21 Darwin-x86_64 is no longer supported on TruffleRuby 34+
• 5d9c71d Add truffleruby-34.0.0,truffleruby+graalvm-34.0.0
• e65c17d Add jruby-10.0.5.0
• ba696ad Refactor matrix script
• 2327de0 TruffleRuby 34+ does not support macOS Intel
• Additional commits viewable in compare view

Updates actions/setup-go from 6.3.0 to 6.4.0

Release notes

Sourced from actions/setup-go's releases.

v6.4.0

What's Changed

Enhancement

• Add go-download-base-url input for custom Go distributions by @​gdams in actions/setup-go#721

Dependency update

• Upgrade minimatch from 3.1.2 to 3.1.5 by @​dependabot in actions/setup-go#727

Documentation update

• Rearrange README.md, add advanced-usage.md by @​priyagupta108 in actions/setup-go#724
• Fix Microsoft build of Go link by @​gdams in actions/setup-go#734

New Contributors

• @​gdams made their first contribution in actions/setup-go#721

Full Changelog: actions/setup-go@v6...v6.4.0

Commits

• 4a36011 docs: fix Microsoft build of Go link (#734)
• 8f19afc feat: add go-download-base-url input for custom Go distributions (#721)
• 27fdb26 Bump minimatch from 3.1.2 to 3.1.5 (#727)
• def8c39 Rearrange README.md, add advanced-usage.md (#724)
• See full diff in compare view

Updates actions/dependency-review-action from 4.9.0 to 5.0.0

Release notes

Sourced from actions/dependency-review-action's releases.

5.0.0

This is a new major version of the Dependency Review Action which updates the runtime to node24. This requires a minimum Actions Runner version v2.327.1 to run.

What's Changed

• Add .github/copilot-instructions.md for Copilot coding agent by @​ahpook in actions/dependency-review-action#1067
• Update Node.js runtime from 20 to 24 by @​scottschreckengaust in actions/dependency-review-action#1084
• Bump spdx-license-ids from 3.0.20 to 3.0.23 by @​mongolyy in actions/dependency-review-action#1091
• docs: bump actions/checkout from v4 to v6 in workflow examples by @​Marukome0743 in actions/dependency-review-action#1077
• fix: patched version display for advisories with non-strict semver ranges (e.g. Maven beta versions) by @​tspascoal in actions/dependency-review-action#1076
• Resolve security findings by @​AshelyTC in actions/dependency-review-action#1094
• v5.0.0 release branch by @​ahpook in actions/dependency-review-action#1098

New Contributors

• @​scottschreckengaust made their first contribution in actions/dependency-review-action#1084
• @​mongolyy made their first contribution in actions/dependency-review-action#1091
• @​Marukome0743 made their first contribution in actions/dependency-review-action#1077

Full Changelog: actions/dependency-review-action@v4.9.0...v5.0.0

Commits

• a1d282b Merge pull request #1098 from actions/ahpook/v5-release
• eb6c199 update examples to show @​v5
• 3943c2c v5.0.0 release branch
• 454943c Merge pull request #1094 from actions/ashelytc/security-findings
• 6d92a12 revert @​typescript-eslint/parser update
• a8e5a7e Merge pull request #1076 from tspascoal/fix-version-matching-for-non-string-s...
• b6b7079 update @​typescript-eslint/parser to 8.40.0
• 821a21d update more dependencies
• 05aaaae run npm audit fix
• 55d3e75 Merge pull request #1077 from Marukome0743/docs/checkout
• Additional commits viewable in compare view

Updates actions/create-github-app-token from 2.2.1 to 3.1.1

Release notes

Sourced from actions/create-github-app-token's releases.

v3.1.1

3.1.1 (2026-04-11)

Bug Fixes

• improve error message when app identifier is empty (#362) (07e2b76), closes #249

v3.1.0

3.1.0 (2026-04-11)

Bug Fixes

• deps: bump p-retry from 7.1.1 to 8.0.0 (#357) (3bbe07d)

Features

• add client-id input and deprecate app-id (#353) (e6bd4e6)
• update permission inputs (#358) (076e948)

v3.0.0

3.0.0 (2026-03-14)

• feat!: node 24 support (#275) (2e564a0)
• fix!: require NODE_USE_ENV_PROXY for proxy support (#342) (4451bcb)

Bug Fixes

• remove custom proxy handling (#143) (dce0ab0)

BREAKING CHANGES

• Custom proxy handling has been removed. If you use HTTP_PROXY or HTTPS_PROXY, you must now also set NODE_USE_ENV_PROXY=1 on the action step.
• Requires Actions Runner v2.327.1 or later if you are using a self-hosted runner.

v3.0.0-beta.6

3.0.0-beta.6 (2026-03-13)

Bug Fixes

• deps: bump @​actions/core from 1.11.1 to 3.0.0 (#337) (b044133)
• deps: bump minimatch from 9.0.5 to 9.0.9 (#335) (5cbc656)
• deps: bump the production-dependencies group with 4 updates (#336) (6bda5bc)
• deps: bump undici from 7.16.0 to 7.18.2 (#323) (b4f638f)

... (truncated)

Commits

• 1b10c78 build(release): 3.1.1 [skip ci]
• 07e2b76 fix: improve error message when app identifier is empty (#362)
• ea01216 ci: remove publish-immutable-action workflow (#361)
• 7bd0371 build(release): 3.1.0 [skip ci]
• e6bd4e6 feat: add client-id input and deprecate app-id (#353)
• 076e948 feat: update permission inputs (#358)
• 3bbe07d fix(deps): bump p-retry from 7.1.1 to 8.0.0 (#357)
• 28a99e3 build(deps-dev): bump c8 from 10.1.3 to 11.0.0
• 4df5060 build(deps-dev): bump open-cli from 8.0.0 to 9.0.0
• 4843c53 build(deps-dev): bump the development-dependencies group with 3 updates
• Additional commits viewable in compare view

Updates rubygems/configure-rubygems-credentials from 1.0.0 to 2.0.0

Release notes

Sourced from rubygems/configure-rubygems-credentials's releases.

v2.0.0

What's Changed

• Remove oidc test env by @​segiddins in rubygems/configure-rubygems-credentials#219
• npm audit fix by @​segiddins in rubygems/configure-rubygems-credentials#229
• npm audit fix by @​segiddins in rubygems/configure-rubygems-credentials#248
• update yaml & zod by @​segiddins in rubygems/configure-rubygems-credentials#249
• Remove (inaccurate) CODEOWNERS file by @​landongrindheim in rubygems/configure-rubygems-credentials#299
• Teach Dependabot to run weekly by @​landongrindheim in rubygems/configure-rubygems-credentials#300
• Set up github actions linting by @​segiddins in rubygems/configure-rubygems-credentials#303
• 🛠️ Build Dependabot updates by @​landongrindheim in rubygems/configure-rubygems-credentials#298
• Ensure we're not in a detached state when committing by @​landongrindheim in rubygems/configure-rubygems-credentials#304
• Set the remote url (in memory) if a push is needed by @​landongrindheim in rubygems/configure-rubygems-credentials#305
• Use pin hash and latest versions by @​hsbt in rubygems/configure-rubygems-credentials#348
• Fixed assertion message from rubygems.org by @​hsbt in rubygems/configure-rubygems-credentials#353
• Bump @​actions/core from 1.11.1 to 2.0.3 by @​hsbt in rubygems/configure-rubygems-credentials#380
• Improve documentation for role-to-assume by @​hsbt in rubygems/configure-rubygems-credentials#381

New Contributors

• @​landongrindheim made their first contribution in rubygems/configure-rubygems-credentials#299
• @​hsbt made their first contribution in rubygems/configure-rubygems-credentials#348

Full Changelog: rubygems/configure-rubygems-credentials@v1.0.0...v2.0.0

Commits

• 762a4b7 Exclude dependabot updates from release note
• 720fbb1 Merge pull request #401 from rubygems/dependabot/npm_and_yarn/types/node-25.6.0
• 7609dc5 Merge pull request #400 from rubygems/dependabot/npm_and_yarn/typescript-esli...
• 97eb064 Bump @​types/node from 22.9.1 to 25.6.0
• 3561a05 Bump @​typescript-eslint/parser from 8.58.2 to 8.59.1
• cb08873 Merge pull request #394 from rubygems/dependabot/github_actions/zizmorcore/zi...
• aa6ce95 Merge pull request #395 from rubygems/dependabot/github_actions/github/codeql...
• 83bda94 Merge pull request #396 from rubygems/dependabot/npm_and_yarn/eslint-plugin-j...
• a44a37c Merge pull request #397 from rubygems/dependabot/github_actions/actions/setup...
• c99d6f3 Bump actions/setup-node from 6.3.0 to 6.4.0
• Additional commits viewable in compare view

Updates sigstore/cosign-installer from 4.0.0 to 4.1.2

Release notes

Sourced from sigstore/cosign-installer's releases.

v4.1.2

What's Changed

• Bump cosign to 3.0.6 in sigstore/cosign-installer#232

v4.1.1

What's Changed

• chore: update default cosign-release to v3.0.5 in sigstore/cosign-installer#223

Full Changelog: sigstore/cosign-installer@v4.1.0...v4.1.1

v4.1.0

What's Changed

We recommend updating as soon as possible as this includes bug fixes for Cosign. We also recommend removing with: cosign-release and strongly discourage using cosign-release unless you have a specific reason to use an older version of Cosign.

• Bump cosign to 3.0.5 in sigstore/cosign-installer#220
• fix: add retry to curl downloads for transient network failures in sigstore/cosign-installer#210

Full Changelog: sigstore/cosign-installer@v4.0.0...v4.1.0

Commits

• 6f9f177 Bump cosign to 3.0.6 (#232)
• b5e753a Bump actions/github-script from 8.0.0 to 9.0.0 (#230)
• 115e4ce Bump actions/setup-go from 6.3.0 to 6.4.0 (#226)
• cad07c2 chore: update default cosign-release to v3.0.5 (#223)
• ba7bc0a fix: add retry to curl downloads for transient network failures (#210)
• 5a292e1 Bump cosign to 3.0.5 (#220)
• 351ea76 Bump actions/checkout from 6.0.1 to 6.0.2 (#217)
• c17565f test with go 1.26 too (#221)
• a6fdd19 Bump actions/setup-go from 6.1.0 to 6.3.0 (#218)
• 430b6a7 docs: fix registry from gcr.io to ghcr.io (#213)
• Additional commits viewable in