From c49d9b9b1947c86583be667bf199c73e811a69ed Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 30 Mar 2026 01:58:35 +0000
Subject: [PATCH] chore(deps): Bump the development-dependencies group with 4
 updates

Bumps the development-dependencies group with 4 updates: [github/codeql-action](https://github.com/github/codeql-action), [ctrf-io/github-test-reporter](https://github.com/ctrf-io/github-test-reporter), [github/contributors](https://github.com/github/contributors) and [taiki-e/install-action](https://github.com/taiki-e/install-action).


Updates `github/codeql-action` from 4.34.1 to 4.35.1
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/38697555549f1db7851b81482ff19f1fa5c4fedc...c10b8064de6f491fea524254123dbe5e09572f13)

Updates `ctrf-io/github-test-reporter` from 1.0.27 to 1.0.28
- [Release notes](https://github.com/ctrf-io/github-test-reporter/releases)
- [Commits](https://github.com/ctrf-io/github-test-reporter/compare/31e2a2735dd4641c65c2f49eb07e93ce8ec37fff...0f299074936c32ccaab5be5230511f6b2b9080aa)

Updates `github/contributors` from 2.0.5 to 2.0.6
- [Release notes](https://github.com/github/contributors/releases)
- [Commits](https://github.com/github/contributors/compare/24fd00bb53f32b3a2dcbeb00c4737f930e21c0ee...6255ce8253111dc8d4a415ccfb753d7ef800433f)

Updates `taiki-e/install-action` from 2.69.12 to 2.70.2
- [Release notes](https://github.com/taiki-e/install-action/releases)
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/taiki-e/install-action/compare/80a23c5ba9e1100fd8b777106e810018ed662a7b...e9e8e031bcd90cdbe8ac6bb1d376f8596e587fbf)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.35.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: development-dependencies
- dependency-name: ctrf-io/github-test-reporter
  dependency-version: 1.0.28
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: development-dependencies
- dependency-name: github/contributors
  dependency-version: 2.0.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: development-dependencies
- dependency-name: taiki-e/install-action
  dependency-version: 2.70.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: development-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/codeql.yml          | 4 ++--
 .github/workflows/collect-reports.yml | 2 +-
 .github/workflows/contributors.yml    | 2 +-
 .github/workflows/release.yml         | 2 +-
 .github/workflows/scanner.yml         | 4 ++--
 5 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index bcc364d..7b12d77 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -26,9 +26,9 @@ jobs:
     -
       # Initializes the CodeQL tools for scanning.
       name: Initialize CodeQL
-      uses: github/codeql-action/init@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1
+      uses: github/codeql-action/init@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
       with:
         languages: ${{ matrix.language }}
     -
       name: Analyze ${{ matrix.language }}
-      uses: github/codeql-action/analyze@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1
+      uses: github/codeql-action/analyze@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
diff --git a/.github/workflows/collect-reports.yml b/.github/workflows/collect-reports.yml
index 9d6a645..d3714eb 100644
--- a/.github/workflows/collect-reports.yml
+++ b/.github/workflows/collect-reports.yml
@@ -106,7 +106,7 @@ jobs:
       # They also handle the storage of past test reports, so as to assess flaky tests.
       -
         name: Publish Test Summary Results
-        uses: ctrf-io/github-test-reporter@31e2a2735dd4641c65c2f49eb07e93ce8ec37fff # v1.0.27
+        uses: ctrf-io/github-test-reporter@0f299074936c32ccaab5be5230511f6b2b9080aa # v1.0.28
         with:
           report-path: 'reports/ctrf_report_*.json'
           use-suite-name: true
diff --git a/.github/workflows/contributors.yml b/.github/workflows/contributors.yml
index f26729b..f4813e8 100644
--- a/.github/workflows/contributors.yml
+++ b/.github/workflows/contributors.yml
@@ -70,7 +70,7 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
       - name: Identify all-time contributors to this repository
-        uses: github/contributors@24fd00bb53f32b3a2dcbeb00c4737f930e21c0ee # v2.0.5
+        uses: github/contributors@6255ce8253111dc8d4a415ccfb753d7ef800433f # v2.0.6
         env:
           GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
           REPOSITORY: ${{ github.repository }}
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index f05092d..d442e71 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -92,7 +92,7 @@ jobs:
         uses: go-openapi/gh-actions/ci-jobs/detect-go-monorepo@22f6d5e0e1d13b8e835ea0ffe69ed5589f7cc354 # v1.4.11
       -
         name: Install git-cliff
-        uses: taiki-e/install-action@80a23c5ba9e1100fd8b777106e810018ed662a7b # v2.69.12
+        uses: taiki-e/install-action@e9e8e031bcd90cdbe8ac6bb1d376f8596e587fbf # v2.70.2
         with:
           tool: git-cliff
       -
diff --git a/.github/workflows/scanner.yml b/.github/workflows/scanner.yml
index 5b3f0b3..62114a0 100644
--- a/.github/workflows/scanner.yml
+++ b/.github/workflows/scanner.yml
@@ -49,7 +49,7 @@ jobs:
           exit-code: 0
       -
         name: Upload trivy findings to code scanning dashboard
-        uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1
+        uses: github/codeql-action/upload-sarif@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
         with:
           category: trivy
           sarif_file: trivy-code-report.sarif
@@ -69,7 +69,7 @@ jobs:
           output-file: govulnscan-report.sarif
       -
         name: Upload govulnscan findings to code scanning dashboard
-        uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1
+        uses: github/codeql-action/upload-sarif@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
         with:
           category: govulnscan
           sarif_file: govulnscan-report.sarif