From aa689bac969095c948874457b99ba9b67c73e092 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 20 Jun 2026 18:45:36 +0000 Subject: [PATCH] chore(deps): bump actions/github-script from 7 to 9 Bumps [actions/github-script](https://github.com/actions/github-script) from 7 to 9. - [Release notes](https://github.com/actions/github-script/releases) - [Commits](https://github.com/actions/github-script/compare/v7...v9) --- updated-dependencies: - dependency-name: actions/github-script dependency-version: '9' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/cert-pin-watch.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/cert-pin-watch.yml b/.github/workflows/cert-pin-watch.yml index b54bdb6..b94b125 100644 --- a/.github/workflows/cert-pin-watch.yml +++ b/.github/workflows/cert-pin-watch.yml @@ -68,7 +68,7 @@ jobs: - name: Open a tracking issue on drift if: failure() - uses: actions/github-script@v7 + uses: actions/github-script@v9 env: # Passed via env (not ${{ }} interpolation) so the report text can # never break out of the script — workflow-injection-safe pattern.