chore(deps): update github/codeql-action action to v4.32.4 (#486)

This PR contains the following updates:

| Package | Type | Update | Change | OpenSSF |
|---|---|---|---|---|
|
[github/codeql-action](https://redirect.github.com/github/codeql-action)
| action | patch | `v4.32.3` → `v4.32.4` | [![OpenSSF
Scorecard](https://api.securityscorecards.dev/projects/github.com/github/codeql-action/badge)](https://securityscorecards.dev/viewer/?uri=github.com/github/codeql-action)
|

---

### Release Notes

<details>
<summary>github/codeql-action (github/codeql-action)</summary>

###
[`v4.32.4`](https://redirect.github.com/github/codeql-action/releases/tag/v4.32.4)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v4.32.3...v4.32.4)

- Update default CodeQL bundle version to
[2.24.2](https://redirect.github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.2).
[#&#8203;3493](https://redirect.github.com/github/codeql-action/pull/3493)
- Added an experimental change which improves how certificates are
generated for the authentication proxy that is used by the CodeQL Action
in Default Setup when [private package registries are
configured](https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries).
This is expected to generate more widely compatible certificates and
should have no impact on analyses which are working correctly already.
We expect to roll this change out to everyone in February.
[#&#8203;3473](https://redirect.github.com/github/codeql-action/pull/3473)
- When the CodeQL Action is run [with debugging enabled in Default
Setup](https://docs.github.com/en/code-security/how-tos/scan-code-for-vulnerabilities/troubleshooting/troubleshooting-analysis-errors/logs-not-detailed-enough#creating-codeql-debugging-artifacts-for-codeql-default-setup)
and [private package registries are
configured](https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries),
the "Setup proxy for registries" step will output additional diagnostic
information that can be used for troubleshooting.
[#&#8203;3486](https://redirect.github.com/github/codeql-action/pull/3486)
- Added a setting which allows the CodeQL Action to enable network
debugging for Java programs. This will help GitHub staff support
customers with troubleshooting issues in GitHub-managed CodeQL
workflows, such as Default Setup. This setting can only be enabled by
GitHub staff.
[#&#8203;3485](https://redirect.github.com/github/codeql-action/pull/3485)
- Added a setting which enables GitHub-managed workflows, such as
Default Setup, to use a [nightly CodeQL CLI
release](https://redirect.github.com/dsp-testing/codeql-cli-nightlies)
instead of the latest, stable release that is used by default. This will
help GitHub staff support customers whose analyses for a given
repository or organization require early access to a change in an
upcoming CodeQL CLI release. This setting can only be enabled by GitHub
staff.
[#&#8203;3484](https://redirect.github.com/github/codeql-action/pull/3484)

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined),
Automerge - Only on Sunday and Saturday ( * * * * 0,6 ) in timezone
Europe/Dublin.

🚦 **Automerge**: Enabled.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the
rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update
again.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR was generated by [Mend Renovate](https://mend.io/renovate/).
View the [repository job
log](https://developer.mend.io/github/BSStudio/bss-web-graphql-backend).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4yNi41IiwidXBkYXRlZEluVmVyIjoiNDMuMjYuNSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==-->

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>

Author: renovate[bot]

.github/workflows/docker.yml

@@ -79,7 +79,7 @@ jobs:
           severity-cutoff: 'high'
           fail-build: false
 
-      - uses: github/codeql-action/upload-sarif@9e907b5e64f6b83e7804b09294d44122997950d6 # v4.32.3
+      - uses: github/codeql-action/upload-sarif@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
         if: ${{ github.event_name != 'pull_request' && github.event_name != 'merge_group' }}
         with:
           sarif_file: ${{ steps.scan.outputs.sarif }}

.github/workflows/scorecard.yml

@@ -75,6 +75,6 @@ jobs:
       # Upload the results to GitHub's code scanning dashboard (optional).
       # Commenting out will disable upload of results to your repo's Code Scanning dashboard
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@9e907b5e64f6b83e7804b09294d44122997950d6 # v4.32.3
+        uses: github/codeql-action/upload-sarif@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
         with:
           sarif_file: results.sarif