ci: Bump the actions group with 4 updates

[dependabot]

Bumps the actions group with 4 updates: actions/checkout, KyleMayes/install-llvm-action, actions/cache and taiki-e/install-action.

Updates actions/checkout from 6.0.1 to 6.0.2

Release notes

Sourced from actions/checkout's releases.

v6.0.2

What's Changed

• Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set by @​TingluoHuang in actions/checkout#2355
• Fix tag handling: preserve annotations and explicit fetch-tags by @​ericsciple in actions/checkout#2356

Full Changelog: actions/checkout@v6.0.1...v6.0.2

Changelog

Sourced from actions/checkout's changelog.

Changelog

v6.0.2

• Fix tag handling: preserve annotations and explicit fetch-tags by @​ericsciple in actions/checkout#2356

v6.0.1

• Add worktree support for persist-credentials includeIf by @​ericsciple in actions/checkout#2327

v6.0.0

• Persist creds to a separate file by @​ericsciple in actions/checkout#2286
• Update README to include Node.js 24 support details and requirements by @​salmanmkc in actions/checkout#2248

v5.0.1

• Port v6 cleanup to v5 by @​ericsciple in actions/checkout#2301

v5.0.0

• Update actions checkout to use node 24 by @​salmanmkc in actions/checkout#2226

v4.3.1

• Port v6 cleanup to v4 by @​ericsciple in actions/checkout#2305

v4.3.0

• docs: update README.md by @​motss in actions/checkout#1971
• Add internal repos for checking out multiple repositories by @​mouismail in actions/checkout#1977
• Documentation update - add recommended permissions to Readme by @​benwells in actions/checkout#2043
• Adjust positioning of user email note and permissions heading by @​joshmgross in actions/checkout#2044
• Update README.md by @​nebuk89 in actions/checkout#2194
• Update CODEOWNERS for actions by @​TingluoHuang in actions/checkout#2224
• Update package dependencies by @​salmanmkc in actions/checkout#2236

v4.2.2

• url-helper.ts now leverages well-known environment variables by @​jww3 in actions/checkout#1941
• Expand unit test coverage for isGhes by @​jww3 in actions/checkout#1946

v4.2.1

• Check out other refs/* by commit if provided, fall back to ref by @​orhantoy in actions/checkout#1924

v4.2.0

• Add Ref and Commit outputs by @​lucacome in actions/checkout#1180
• Dependency updates by @​dependabot- actions/checkout#1777, actions/checkout#1872

v4.1.7

• Bump the minor-npm-dependencies group across 1 directory with 4 updates by @​dependabot in actions/checkout#1739
• Bump actions/checkout from 3 to 4 by @​dependabot in actions/checkout#1697
• Check out other refs/* by commit by @​orhantoy in actions/checkout#1774
• Pin actions/checkout's own workflows to a known, good, stable version. by @​jww3 in actions/checkout#1776

v4.1.6

• Check platform to set archive extension appropriately by @​cory-miller in actions/checkout#1732

... (truncated)

Commits

• de0fac2 Fix tag handling: preserve annotations and explicit fetch-tags (#2356)
• 064fe7f Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...
• See full diff in compare view

Updates KyleMayes/install-llvm-action from 2.0.8 to 2.0.9

Release notes

Sourced from KyleMayes/install-llvm-action's releases.

v2.0.9

• Added support for additional LLVM and Clang 20/21 versions

Changelog

Sourced from KyleMayes/install-llvm-action's changelog.

[2.0.9] - 2026-01-20

• Added support for additional LLVM and Clang 20/21 versions

[2.0.8] - 2025-10-09

• Added support for LLVM and Clang 21 (for platforms with binaries available)

[2.0.7] - 2025-05-02

• Added support for LLVM and Clang 20 (and some more 18 and 19 versions)

[2.0.6] - 2025-02-24

• Added support for LLVM and Clang 19

[2.0.5] - 2024-09-08

• Added support for LLVM and Clang 18.1.8 on ARM64 macOS

[2.0.4] - 2024-08-11

• Added support up to LLVM and Clang 18.1.8 (for platforms with binaries available)

[2.0.3] - 2024-05-26

• Added support up to LLVM and Clang 18.1.6 (for platforms with binaries available)

[2.0.2] - 2024-04-09

• Added support up to LLVM and Clang 18.1.3 (for platforms with binaries available)

[2.0.1] - 2024-04-02

Fixes

• Fixed exact LLVM and Clang versions (e.g., 17.0.6) causing the action to fail
• Fixed LLVM and Clang executables failing to run on ARM64 macOS runners

[2.0.0] - 2024-03-31

Migrating from v1

• Support for LLVM and Clang 3.5 through 7.0 has been removed (use 7.1 or later)
• The download-url input has been renamed to mirror-url
• The force-version and ubuntu-version inputs have been replaced with the force-url input

Other Changes

• Added arch input
• Added support for various missing LLVM and Clang versions up to 18.1.2

Commits

• ebc0426 Update CHANGELOG.md
• 107862d Add release checklist
• 4bde2c3 Update assets.json with newer versions
• See full diff in compare view

Updates actions/cache from 5.0.1 to 5.0.3

Release notes

Sourced from actions/cache's releases.

v5.0.3

What's Changed

• Bump @actions/cache to v5.0.5 (Resolves: https://github.com/actions/cache/security/dependabot/33)
• Bump @actions/core to v2.0.3

Full Changelog: actions/cache@v5...v5.0.3

v.5.0.2

v5.0.2

What's Changed

When creating cache entries, 429s returned from the cache service will not be retried.

Changelog

Sourced from actions/cache's changelog.

Releases

How to prepare a release

[!NOTE]
Relevant for maintainers with write access only.

1. Switch to a new branch from main.
2. Run npm test to ensure all tests are passing.
3. Update the version in https://github.com/actions/cache/blob/main/package.json.
4. Run npm run build to update the compiled files.
5. Update this https://github.com/actions/cache/blob/main/RELEASES.md with the new version and changes in the ## Changelog section.
6. Run licensed cache to update the license report.
7. Run licensed status and resolve any warnings by updating the https://github.com/actions/cache/blob/main/.licensed.yml file with the exceptions.
8. Commit your changes and push your branch upstream.
9. Open a pull request against main and get it reviewed and merged.
10. Draft a new release https://github.com/actions/cache/releases use the same version number used in package.json
    1. Create a new tag with the version number.
    2. Auto generate release notes and update them to match the changes you made in RELEASES.md.
    3. Toggle the set as the latest release option.
    4. Publish the release.
11. Navigate to https://github.com/actions/cache/actions/workflows/release-new-action-version.yml
    1. There should be a workflow run queued with the same version number.
    2. Approve the run to publish the new version and update the major tags for this action.

Changelog

5.0.3

• Bump @actions/cache to v5.0.5 (Resolves: https://github.com/actions/cache/security/dependabot/33)
• Bump @actions/core to v2.0.3

5.0.2

• Bump @actions/cache to v5.0.3 #1692

5.0.1

• Update @azure/storage-blob to ^12.29.1 via @actions/cache@5.0.1 #1685

5.0.0

[!IMPORTANT] actions/cache@v5 runs on the Node.js 24 runtime and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.

4.3.0

• Bump @actions/cache to v4.1.0

... (truncated)

Commits

• cdf6c1f Merge pull request #1695 from actions/Link-/prepare-5.0.3
• a1bee22 Add review for the @​actions/http-client license
• 4695763 Add licensed output
• dc73bb9 Upgrade dependencies and address security warnings
• 345d5c2 Add 5.0.3 builds
• 8b402f5 Merge pull request #1692 from GhadimiR/main
• 304ab5a license for httpclient
• 609fc19 Update licensed record for cache
• b22231e Build
• 93150cd Add PR link to releases
• Additional commits viewable in compare view

Updates taiki-e/install-action from 2.65.12 to 2.67.18

Release notes

Sourced from taiki-e/install-action's releases.

2.67.18

• Update prek@latest to 0.3.1.

• Update mise@latest to 2026.1.12.

• Update cargo-insta@latest to 1.46.2.

2.67.17

• Update rclone@latest to 1.73.0.

• Update mise@latest to 2026.1.11.

• Update vacuum@latest to 0.23.5.

• Update trivy@latest to 0.69.0.

2.67.16

• Update uv@latest to 0.9.28.

• Update syft@latest to 1.41.1.

• Update protoc@latest to 3.33.5.

• Update martin@latest to 1.3.0.

• Update mise@latest to 2026.1.9.

• Update editorconfig-checker@latest to 3.6.1.

• Update cargo-binstall@latest to 1.17.4.

2.67.15

• Update typos@latest to 1.42.3.

• Update cargo-zigbuild@latest to 0.21.4.

2.67.14

• Update syft@latest to 1.41.0.

• Update cargo-llvm-cov@latest to 0.8.2.

• Update mise@latest to 2026.1.8.

• Update wasmtime@latest to 41.0.1.

• Update uv@latest to 0.9.27.

2.67.13

• Update typos@latest to 1.42.2.

... (truncated)

Changelog

Sourced from taiki-e/install-action's changelog.

Changelog

All notable changes to this project will be documented in this file.

This project adheres to Semantic Versioning.

[Unreleased]

[2.67.18] - 2026-01-31

• Update prek@latest to 0.3.1.

• Update mise@latest to 2026.1.12.

• Update cargo-insta@latest to 1.46.2.

[2.67.17] - 2026-01-31

• Update rclone@latest to 1.73.0.

• Update mise@latest to 2026.1.11.

• Update vacuum@latest to 0.23.5.

• Update trivy@latest to 0.69.0.

[2.67.16] - 2026-01-30

• Update uv@latest to 0.9.28.

• Update syft@latest to 1.41.1.

• Update protoc@latest to 3.33.5.

• Update martin@latest to 1.3.0.

• Update mise@latest to 2026.1.9.

• Update editorconfig-checker@latest to 3.6.1.

• Update cargo-binstall@latest to 1.17.4.

[2.67.15] - 2026-01-28

• Update typos@latest to 1.42.3.

... (truncated)

Commits

• 650c5ca Release 2.67.18
• 1e5407d Update prek@latest to 0.3.1
• 2284e12 Update mise@latest to 2026.1.12
• 3382d98 Update cargo-insta@latest to 1.46.2
• 29feb09 Release 2.67.17
• c955ca4 Update rclone@latest to 1.73.0
• 095a7a9 Update mise@latest to 2026.1.11
• f89f9e6 Update vacuum@latest to 0.23.5
• 20ccfe7 Update trivy@latest to 0.69.0
• a362280 Release 2.67.16
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[coveralls]

Pull Request Test Coverage Report for Build 21562682280

Details

• 0 of 0 changed or added relevant lines in 0 files are covered.
• No unchanged relevant lines lost coverage.
• Overall coverage remained the same at 26.439%

---

Totals
Change from base Build 21533414397:	0.0%
Covered Lines:	3608
Relevant Lines:	14123

---

💛 - Coveralls