chore(deps): update github-actions

[NetcrackerCLPLCI]

Note: This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Type	Update	Change
actions/checkout	action	patch	v5.0.0 → v5.0.1
netcracker/qubership-core-infra	action	minor	v1.0.9 → v1.3.1
netcracker/qubership-workflow-hub	action	patch	2.0.1 → 2.0.6
netcracker/qubership-workflow-hub	action	patch	v1.0.6 → v1.0.7
netcracker/qubership-workflow-hub	action	patch	v2.0.4 → v2.0.6
super-linter/super-linter	action	minor	v8.1.0 → v8.3.2

---

Warning

Some dependencies could not be looked up. Check the warning logs for more information.

---

Release Notes

actions/checkout (actions/checkout)

v5.0.1

Compare Source

What's Changed

• Port v6 cleanup to v5 by @​ericsciple in #​2301

Full Changelog: actions/checkout@v5...v5.0.1

netcracker/qubership-core-infra (netcracker/qubership-core-infra)

v1.3.1

Compare Source

v1.3.0

Compare Source

v1.2.1

Compare Source

v1.2.0

Compare Source

v1.1.2

Compare Source

v1.1.1

Compare Source

v1.1.0

Compare Source

netcracker/qubership-workflow-hub (netcracker/qubership-workflow-hub)

v2.0.6: 2.0.6

Compare Source

🚀 Release

What's Changed

• (#​512) chore(deps): bump actions/cache from 4 to 5 by @​dependabot[bot]
• (#​511) chore(deps): bump actions/download-artifact from 6 to 7 by @​dependabot[bot]
• (#​513) chore: Bump profanity-filter dependency to version 10.0 by @​nookyo
• (#​510) chore(deps): bump IEvangelist/profanity-filter from 9.07 to 10.0 by @​dependabot[bot]
• (#​509) chore(deps): bump anchore/scan-action from 7.2.1 to 7.2.2 by @​dependabot[bot]
• (#​508) chore(deps): bump actions/upload-artifact from 5 to 6 by @​dependabot[bot]

💡 New Features

• (#​524) feat: Improve Logging and Error Handling in Package Deletion Action by @​nookyo
• (#​522) feat: Improve Cleanup Action Reporting, Error Handling, and Dry-Run UX by @​nookyo
• (#​507) feat: Docker Configuration Resolver Action with Input/Output Handling by @​nookyo

🐞 Bug Fixes

• (#​522) feat: Improve Cleanup Action Reporting, Error Handling, and Dry-Run UX by @​nookyo
• (#​521) fix: added the step to upload released charts as an artifact by @​borislavr
• (#​517) fix: Fix incorrect logger method call in container-package-cleanup by @​nookyo
• (#​507) feat: Docker Configuration Resolver Action with Input/Output Handling by @​nookyo
• (#​506) fix: actions/maven-snapshot-deploy/action.yaml -- correct escaping of ADDITIONAL_MVN_ARGS by @​borislavr

⚙️ Technical Debt

• (#​522) feat: Improve Cleanup Action Reporting, Error Handling, and Dry-Run UX by @​nookyo

---

Full Changelog: Netcracker/qubership-workflow-hub@v2.0.5...v2.0.6

v2.0.5: 2.0.5

Compare Source

🚀 Release

What's Changed

🐞 Bug Fixes

• (#​504) fix: add image existence check and login step for Docker target in security scan workflow by @​nookyo

---

Full Changelog: Netcracker/qubership-workflow-hub@v2.0.4...v2.0.5

v2.0.4: 2.0.4

Compare Source

🚀 Release

What's Changed

💡 New Features

• (#​498) feat: implement selective build deploy and test ci approach for kafka by @​borislavr

🐞 Bug Fixes

• (#​500) fix: Enhance error handling and improve image name extraction in Docker action script by @​nookyo

📝 Documentation

• (#​498) feat: implement selective build deploy and test ci approach for kafka by @​borislavr

---

Full Changelog: Netcracker/qubership-workflow-hub@v2.0.3...v2.0.4

v2.0.3: 2.0.3

Compare Source

🚀 Release

What's Changed

• (#​492) chore(deps): bump actions/checkout from 5 to 6 by @​dependabot[bot]
• (#​494) chore: Upgrade super-linter to version 8.3.0 and update biome schema by @​nookyo
• (#​491) chore(deps): bump super-linter/super-linter from 8.2.1 to 8.3.0 by @​dependabot[bot]
• (#​490) chore(deps): bump anchore/scan-action from 7.2.0 to 7.2.1 by @​dependabot[bot]
• (#​480) chore(deps): bump actions/checkout from 4 to 6 by @​dependabot[bot]

💡 New Features

• (#​493) feat: add the ability to change image address by @​borislavr
• (#​489) fix: update output variable name from ghcr-packages to packages in action.yml by @​nookyo

🐞 Bug Fixes

• (#​493) feat: add the ability to change image address by @​borislavr
• (#​495) fix: fixing issue wit log.log non-existent property of logger class. by @​nookyo
• (#​489) fix: update output variable name from ghcr-packages to packages in action.yml by @​nookyo
• (#​484) fix: 477 bug docker images addresses should use netcracker instead of Netcracker in security scan job re security scan by @​nookyo
• (#​478) fix: update output variable for normalized IMAGE in re-security-scan.yml by @​nookyo

⚙️ Technical Debt

• (#​484) fix: 477 bug docker images addresses should use netcracker instead of netcracker in security scan job re security scan by @​nookyo
• (#​478) fix: update output variable for normalized IMAGE in re-security-scan.yml by @​nookyo

---

Full Changelog: Netcracker/qubership-workflow-hub@v2.0.2...v2.0.3

v2.0.2: 2.0.2

Compare Source

🚀 Release

What's Changed

• (#​468) chore(deps): bump glob from 10.4.5 to 10.5.0 in /packages/action-logger in the npm_and_yarn group across 1 directory by @​dependabot[bot]
• (#​467) chore(deps): bump glob from 10.4.5 to 10.5.0 in /actions/metadata-action in the npm_and_yarn group across 1 directory by @​dependabot[bot]
• (#​463) chore(deps-dev): bump js-yaml from 3.14.1 to 3.14.2 in /packages/action-logger in the npm_and_yarn group across 1 directory by @​dependabot[bot]
• (#​465) chore(deps): bump the npm_and_yarn group across 2 directories with 1 update by @​dependabot[bot]
• (#​460) chore(deps): bump the npm_and_yarn group across 2 directories with 1 update by @​dependabot[bot]
• (#​438) chore(deps): bump actions/setup-node from 5 to 6 by @​dependabot[bot]
• (#​448) chore(deps): bump actions/upload-artifact from 4 to 5 by @​dependabot[bot]
• (#​449) chore(deps): bump actions/download-artifact from 5 to 6 by @​dependabot[bot]
• (#​450) chore(deps): bump anchore/scan-action from 7.0.2 to 7.1.0 by @​dependabot[bot]
• (#​446) feat: added docker.io images publication into docker-action by @​borislavr
• (#​437) chore(deps): bump netcracker/qubership-workflow-hub from 1.0.7 to 2.0.1 by @​dependabot[bot]
• (#​435) chore(deps): bump super-linter/super-linter from 8.2.0 to 8.2.1 by @​dependabot[bot]
• (#​436) chore(deps): bump anchore/scan-action from 7.0.1 to 7.0.2 by @​dependabot[bot]
• (#​429) chore(deps): bump actions/setup-node from 4 to 5 by @​dependabot[bot]

💡 New Features

• (#​475) feat: add additional inputs and improve documentation for Docker Build and Publish action by @​nookyo
• (#​473) feat: enhance re-security-scan.yml with matrix execution and template workflow for GHCR Docker image scanning by @​nookyo

🐞 Bug Fixes

• (#​431) fix(ci): update PR auto-assignment workflow to use pull_request event and improve fork handling by @​NetcrackerCLPLCI

---

Full Changelog: Netcracker/qubership-workflow-hub@v2.0.1...v2.0.2

super-linter/super-linter (super-linter/super-linter)

v8.3.2

Compare Source

🐛 Bugfixes

• centralize file array additions and fix type (#​7323) (ce80cf6), closes #​7302
• create log groups for enabled languages only (#​7329) (7c85bf3), closes #​7307
• initialize github_before_sha (#​7120) (a93b722), closes #​7118 #​7275

⬆️ Dependency updates

• bundler: bump rubocop in /dependencies in the rubocop group (#​7313) (7fab96c)
• docker: bump clj-kondo/clj-kondo in the docker group (#​7325) (fa23c54)
• docker: bump the docker group with 4 updates (#​7318) (dc49a6d)
• java: bump com.puppycrawl.tools:checkstyle (#​7312) (ab58437)
• npm: bump next from 16.0.10 to 16.1.0 in /dependencies (#​7316) (a8572e2)
• npm: bump renovate (#​7300) (191338a)
• npm: bump the npm group across 1 directory with 10 updates (#​7322) (24d9e00)
• npm: bump the npm group across 1 directory with 2 updates (#​7296) (0697485)
• npm: bump the npm group across 1 directory with 2 updates (#​7301) (4b2bf76)
• npm: bump the npm group across 1 directory with 4 updates (#​7327) (07e73d6)
• python: bump ansible-lint (#​7326) (47962ea)
• python: bump snakemake (#​7295) (3f92589)
• python: bump the pip group across 1 directory with 2 updates (#​7299) (0ca0315)
• python: bump the pip group across 1 directory with 6 updates (#​7317) (ae7e8d8)

🧰 Maintenance

• disable dependabot cooldown (#​7311) (e98f7d3)
• docs: mention conflicting tools in upgrades (#​7324) (7afe608), closes #​7298
• github-actions: bump the dev-ci-tools group with 2 updates (#​7315) (4b07868)
• group eslint updates (#​7321) (20f25a3)

v8.3.1

Compare Source

🐛 Bugfixes

• docs: ansible-lints lints the entire dir (#​7272) (b721f3c), closes #​7263
• handle paths with parentheses (#​7273) (d29d0d4)
• rollback to python 3.13 (#​7269) (10265f1)
• trivial log message bug when file does not exist (#​7268) (c6a7b38)

⬆️ Dependency updates

• bundler: bump rubocop-rails in /dependencies in the rubocop group (#​7251) (d8a2032)
• java: bump com.google.googlejavaformat:google-java-format (#​7270) (140a2e3)
• java: bump com.puppycrawl.tools:checkstyle (#​7264) (550df3c)
• java: bump the java-gradle group across 3 directories with 3 updates (#​7252) (5306a0a)
• npm: bump @​modelcontextprotocol/sdk in /dependencies (#​7248) (4d59852)
• npm: bump express from 5.1.0 to 5.2.1 in /dependencies (#​7246) (50462d3)
• npm: bump jws from 4.0.0 to 4.0.1 in /dependencies (#​7260) (cc90344)
• npm: bump next from 16.0.7 to 16.0.9 in /dependencies (#​7277) (b7cedfb)
• npm: bump the npm group across 1 directory with 3 updates (#​7289) (f65215e)
• npm: bump the npm group across 1 directory with 5 updates (#​7271) (b4e616f)
• npm: bump the npm group across 1 directory with 7 updates (#​7259) (0ab9ad4)
• npm: bump the npm group across 1 directory with 8 updates (#​7266) (39e94f8)
• python: bump the pip group across 1 directory with 2 updates (#​7288) (4559b6e)
• python: bump the pip group across 1 directory with 7 updates (#​7265) (026d3fe)

🧰 Maintenance

• add prettier and htmlhint to the npm group (#​7257) (4692c1c)
• deps: update docker dependencies (#​7285) (f4d16d3), closes #​7244
• fix docs typos and update next (#​7284) (0df9f3c)
• update issue template and print graph (#​7276) (dfb728c)

v8.3.0

Compare Source

🚀 Features

• add ability to specify config files for nbqa tools (#​7184) (b37c1c3)
• lint dependabot, github actions with zizmor (#​7241) (09306cd), closes #​7137
• support rust 2024 (#​7211) (c15ee6d), closes #​7139

🐛 Bugfixes

• parse json to extract terraform version (#​7239) (29f1727)

⬆️ Dependency updates

• bundler: bump rubocop in /dependencies in the rubocop group (#​7188) (74b2444)
• bundler: bump rubocop-rails in /dependencies in the rubocop group (#​7231) (dd55c52)
• bundler: bump the rubocop group in /dependencies with 2 updates (#​7178) (3bdc919)
• bundler: bump the rubocop group in /dependencies with 4 updates (#​7202) (0e09528)
• docker: bump python in the docker-base-images group (#​7123) (41c3da1)
• docker: bump the docker group across 1 directory with 12 updates (#​7235) (b1cf27d)
• docker: bump the docker group across 1 directory with 6 updates (#​7148) (76149cf)
• docker: bump the docker group across 1 directory with 9 updates (#​7194) (45f731e)
• npm: bump @​babel/eslint-parser in /dependencies (#​7183) (197eb88)
• npm: bump @​typescript-eslint/eslint-plugin (#​7127) (2d57f06)
• npm: bump @​typescript-eslint/eslint-plugin (#​7196) (033ea99)
• npm: bump body-parser from 2.2.0 to 2.2.1 in /dependencies (#​7238) (30403f6)
• npm: bump eslint from 9.37.0 to 9.38.0 in /dependencies (#​7170) (b42af6f)
• npm: bump eslint from 9.38.0 to 9.39.0 in /dependencies (#​7191) (0cf22c8)
• npm: bump eslint from 9.39.0 to 9.39.1 in /dependencies (#​7197) (513ae8b)
• npm: bump eslint-plugin-react-hooks (#​7180) (61e4208)
• npm: bump js-yaml from 3.14.1 to 3.14.2 in /dependencies (#​7210) (29faa98)
• npm: bump npm-groovy-lint from 15.2.1 to 15.2.2 in /dependencies (#​7130) (4913825)
• npm: bump renovate from 41.142.0 to 41.146.5 in /dependencies (#​7134) (900b973)
• npm: bump renovate from 41.151.1 to 41.161.0 in /dependencies (#​7182) (1d8c2a2)
• npm: bump renovate from 41.161.0 to 42.4.0 in /dependencies (#​7198) (0a4ed30)
• npm: bump the eslint-plugins-configs group across 1 directory with 2 updates (#​7145) (c137ca9)
• npm: bump the npm group across 1 directory with 2 updates (#​7175) (f0b0ff5)
• npm: bump the npm group across 1 directory with 3 updates (#​7146) (d4d3f16)
• npm: bump the npm group across 1 directory with 3 updates (#​7195) (ad4f63c)
• npm: bump the npm group across 1 directory with 5 updates (#​7233) (5cadbf1)
• npm: bump the npm group across 1 directory with 8 updates (#​7221) (3802c52)
• npm: bump the react group across 1 directory with 2 updates (#​7190) (d6c8078)
• npm: bump the react group across 1 directory with 4 updates (#​7128) (4034702)
• npm: bump the typescript group across 1 directory with 2 updates (#​7176) (39aba76)
• python: bump the pip group across 1 directory with 11 updates (#​7199) (07fbf76)
• python: bump the pip group across 1 directory with 3 updates (#​7234) (c8bd6d3)
• python: bump the pip group across 1 directory with 4 updates (#​7219) (91361a3)

🧰 Maintenance

• bump dotnet/sdk to 9.0.306-alpine3.22 (#​7140) (39be15a)
• deps: bump the go_modules group across 2 directories with 1 update (#​7217) (8ef289e)
• dev-docker: bump node in /dev-dependencies (#​7132) (b8dd2b4)
• dev-docker: bump node in /dev-dependencies (#​7189) (635e1f1)
• dev-docker: bump node in /dev-dependencies (#​7218) (0095a4c)
• dev-npm: bump js-yaml (#​7200) (f4f746e)
• dev-npm: bump release-please in /dev-dependencies (#​7129) (3addd51)
• disable md060 on summary tables (#​7228) (4850a5d)
• fix validate_all_codebase value in readme (#​7193) (c40192c)
• github-actions: bump actions/checkout in the dev-ci-tools group (#​7232) (f40c174)
• github-actions: bump the dev-ci-tools group with 3 updates (#​7181) (6d95c88)
• improve logging (#​7173) (ada6bf3)
• improve testing and get push.before (#​7143) (de2fd49)
• merge npm dependabot groups (#​7216) (7a4cfc6)
• set devcontainer name (#​7240) (5aa81e2)
• update google-java-format to 1.29.0 (#​7104) (1399737)

v8.2.1

Compare Source

🐛 Bugfixes

• biome ignore errors on unmatched files (#​7089) (8d1cfd5)
• handle pull_request_target (#​7088) (188a10f)
• handle schedule and workflow_dispatch events (#​7098) (28cb079), closes #​7095
• set CONFLICT_FOUND as expected (#​7093) (07cfe7e), closes #​7092
• strip workspace from the regex check path (#​7110) (3b72a2d), closes #​7086
• validate DEFAULT_BRANCH when using find (#​7119) (7508f4c), closes #​7117

⬆️ Dependency updates

• docker: bump the docker group with 2 updates (#​7100) (28c5681)
• npm: bump eslint from 9.36.0 to 9.37.0 in /dependencies (#​7102) (cf6cb1e)
• npm: bump renovate from 41.132.2 to 41.136.0 in /dependencies (#​7107) (495692f)
• npm: bump the eslint-plugins-configs group across 1 directory with 2 updates (#​7101) (b3a735d)
• npm: bump the npm group across 1 directory with 4 updates (#​7108) (ce227b3)
• npm: bump typescript (#​7109) (deba11c)
• python: bump the pip group across 1 directory with 7 updates (#​7106) (7c02a56)

🧰 Maintenance

• add missing ruff variables to readme (#​7091) (7daeceb), closes #​7099
• explain who ignores VALIDATE_ALL_CODEBASE (#​7111) (9150eb9), closes #​7090
• github-actions: bump peter-evans/create-issue-from-file (#​7103) (ec80a77)
• update rack to 3.2.3 (#​7136) (2e6ad3d)
• update ruby transitive dependencies (#​7115) (00a71f6)

v8.2.0

Compare Source

🚀 Features

• add kubeconform (#​7011) (415cc32), closes #​6967
• add pre-commit (#​7064) (9106b37), closes #​3683
• export GITHUB_TOKEN (#​7054) (879aeb5), closes #​6970
• run ruff as a formatter (#​6981) (f9bdfcb), closes #​5951
• set zizmor github token variable (#​6971) (097f489)
• support biome (#​7005) (fdf27fe), closes #​6298
• support git worktrees (#​6983) (deb9853), closes #​6944

🐛 Bugfixes

• initialize GITHUB_BEFORE_SHA on merge commits (#​7053) (4649231), closes #​6873
• initialize GITHUB_SHA for both worktrees and regular repos (#​7010) (8477b13)
• install r only when needed (#​7029) (5114ec9), closes #​7022
• set biome working directory (#​7035) (d32a717)

⬆️ Dependency updates

• bundler: bump rubocop in /dependencies in the rubocop group (#​6973) (1e6cd2f)
• bundler: bump rubocop in /dependencies in the rubocop group (#​6999) (0c0b832)
• bundler: bump rubocop-performance (#​7014) (1f7db0b)
• bundler: bump the rubocop group in /dependencies with 2 updates (#​7071) (1680ba2)
• bundler: bump the rubocop group in /dependencies with 3 updates (#​6989) (dee2e4e)
• docker: bump aquasecurity/trivy in the docker group (#​7080) (41480db)
• docker: bump goreleaser/goreleaser in the docker group (#​7070) (c2c988a)
• docker: bump the docker group across 1 directory with 4 updates (#​7031) (a1aae7d)
• docker: bump the docker group with 3 updates (#​6995) (54c24c1)
• docker: bump the docker group with 3 updates (#​7000) (9df4ad9)
• docker: bump the docker group with 3 updates (#​7043) (e2dbaa1)
• docker: bump the docker group with 5 updates (#​6974) (8ea4f49)
• docker: bump the docker group with 8 updates (#​7056) (ccb8ba0)
• java: bump com.puppycrawl.tools:checkstyle (#​6991) (6fc26f0)
• java: bump com.puppycrawl.tools:checkstyle (#​7072) (96c0ec9)
• npm: bump @​babel/eslint-parser in /dependencies (#​7017) (c0393aa)
• npm: bump @​typescript-eslint/eslint-plugin (#​6992) (d37840f)
• npm: bump @​typescript-eslint/eslint-plugin (#​7003) (6d3fb85)
• npm: bump @​typescript-eslint/eslint-plugin (#​7023) (a974afd)
• npm: bump [@​typescript-eslint/

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.