build: bump GitHub Actions packages (9 Dependabot upgrades)

[Yamini-Microsoft]

Purpose

Upgrade all 9 Dependabot-recommended GitHub Actions dependencies to their latest versions to resolve known vulnerabilities and keep CI/CD workflows up-to-date. This consolidates all changes from Dependabot PR #61 into a single reviewable PR.

Package	From	To
actions/checkout	v4	v6
azure/login	v2	v3
actions/setup-python	v5	v6
tj-actions/changed-files	v46 (ed68ef8)	v47.0.5 (22103cc)
lycheeverse/lychee-action	v2.4.1	v2.8.0
codfish/semantic-release-action	v3	v5
amannn/action-semantic-pull-request	v5	v6
actions/stale	v9	v10
actions/upload-artifact	v4	v7

Files Changed (7 workflow files):

• .github/workflows/azd-ai-template-validation.yml
• .github/workflows/azure-dev.yml
• .github/workflows/broken-links-checker.yml
• .github/workflows/create-release.yml
• .github/workflows/pr-title-checker.yml
• .github/workflows/pylint.yml
• .github/workflows/stale-bot.yml

Does this introduce a breaking change?

• Yes
• No

No application code or Python dependency changes. Only CI/CD workflow YAML files are updated.

How to Test

• Get the code

git clone https://github.com/microsoft/real-time-intelligence-operations-solution-accelerator.git
cd real-time-intelligence-operations-solution-accelerator
git checkout psl-dependabot-upgrades

• Test the code
  • Trigger each of the 7 modified workflows manually (workflow_dispatch) or via a test push/PR to verify they execute successfully with the upgraded action versions.
  • Verify azd-ai-template-validation, azure-dev, broken-links-checker, create-release, pr-title-checker, pylint, and stale-bot workflows pass without errors.

What to Check

Verify that the following are valid

• All 7 GitHub Actions workflows run successfully with the upgraded action versions
• No workflow failures due to breaking changes in major version bumps
• No changes to application source code or Python dependencies (requirements.txt unchanged)
• CI/CD pipeline behavior remains consistent with previous versions

Other Information

• Resolves Dependabot PR build: bump the github-actions group across 1 directory with 9 updates #61
• Related to ADO User Story #40581
• All 9 upgrades are GitHub Actions (CI/CD) only — no runtime/application impact
• 7 major version bumps present; changelog review completed for breaking changes

[Copilot]

Pull request overview

Updates this repository’s GitHub Actions workflows to the latest Dependabot-suggested versions, keeping CI/CD and automation dependencies current.

Changes:

• Bump core GitHub Actions used across workflows (e.g., actions/checkout, actions/setup-python, actions/upload-artifact).
• Bump Azure auth action from azure/login@v2 to azure/login@v3 in the deployment workflow.
• Update various workflow-specific actions (stale bot, semantic PR title check, release automation, link checker).

Reviewed changes

Copilot reviewed 7 out of 7 changed files in this pull request and generated no comments.

Show a summary per file

File	Description
.github/workflows/azd-ai-template-validation.yml	Bumps actions/checkout to v6 for template validation runs.
.github/workflows/azure-dev.yml	Bumps actions/checkout to v6 and azure/login to v3 across build/deploy/cleanup jobs.
.github/workflows/broken-links-checker.yml	Bumps actions/checkout, tj-actions/changed-files, and lycheeverse/lychee-action.
.github/workflows/create-release.yml	Bumps actions/checkout and codfish/semantic-release-action.
.github/workflows/pr-title-checker.yml	Bumps amannn/action-semantic-pull-request to v6.
.github/workflows/pylint.yml	Bumps actions/checkout and actions/setup-python for lint job.
.github/workflows/stale-bot.yml	Bumps actions/stale, actions/checkout, and actions/upload-artifact.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[github-actions]

🎉 This PR is included in version 1.3.2 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀