fix: use >= version constraints for action deps to enable Dependabot updates

[Copilot]

cpp-linter and clang-tools were pinned with exact == constraints in the action dependency group, causing Dependabot to report "No update possible" — uv lock --upgrade-package cannot change the lockfile when the specifier only allows one exact version.

Changes

• pyproject.toml: Change action group deps from exact (==) to minimum-version (>=) constraints, consistent with dev/docs groups. The lockfile still pins the runtime version precisely.
• uv.lock: Regenerated with uv lock --upgrade-package cpp-linter, bumping cpp-linter to 1.12.1 for Python ≥ 3.10 (stays at 1.12.0 for Python < 3.10, as 1.12.1 transitively requires pygit2 ≥ 1.19.2 which dropped 3.9 support).

# before
action = [
    "clang-tools==0.17.0",
    "cpp-linter==1.12.0",
]

# after
action = [
    "clang-tools>=0.17.0",
    "cpp-linter>=1.12.0",
]

[github-actions]

Cpp-Linter Report ⚠️

Some files did not pass the configured checks!

clang-format (v16.0.6) reports: 2 file(s) not formatted

• docs/examples/demo/demo.hpp
• docs/examples/demo/demo.cpp

clang-tidy (v16.0.6) reports: 7 concern(s)

• docs/examples/demo/demo.hpp:6:11: warning: [modernize-use-default-member-init]

  use default member initializer for 'useless'

      char* useless;
            ^
                   {"\0"}

• docs/examples/demo/demo.hpp:7:9: warning: [modernize-use-default-member-init]

  use default member initializer for 'numb'

      int numb;
          ^
              {0}

• docs/examples/demo/demo.hpp:11:11: warning: [modernize-use-trailing-return-type]

  use a trailing return type for this function

      void *not_useful(char *str){useless = str;}
      ~~~~~~^
      auto                        -> void *

• docs/examples/demo/demo.cpp:3:10: warning: [modernize-deprecated-headers]

  inclusion of deprecated C++ header 'stdio.h'; consider using 'cstdio' instead

  #include <stdio.h>
           ^~~~~~~~~
           <cstdio>

• docs/examples/demo/demo.cpp:8:5: warning: [modernize-use-trailing-return-type]

  use a trailing return type for this function

  int main(){
  ~~~ ^
  auto       -> int

• docs/examples/demo/demo.cpp:10:13: warning: [readability-braces-around-statements]

  statement should be inside braces

      for (;;) break;
              ^
               {

• docs/examples/demo/demo.cpp:13:5: warning: [cppcoreguidelines-pro-type-vararg]

  do not call c-style vararg functions

      printf("Hello world!\n");
      ^

Have any feedback or feature suggestions? Share it here.

[2bndy5]

We switched to exact version requirements for a few reasons.

I didn't think dependabot errors is a good reason to revert that decision.

I suspect the uv.lock errors are more likely from still supporting python 3.9, but that should be resolved by #420

FYI, the recommended version of pygments in security alert #11 has other bugs that need to be resolved first before we upgrade pygments.