deps: Bump the github-actions group across 1 directory with 7 updates

.github/workflows/_changelog.yaml

@@ -10,7 +10,7 @@ permissions: read-all
 jobs:
   workflow:
     name: Workflow
-    uses: action-stars/generic-workflows/.github/workflows/dependabot-changelog.yaml@8888aa6d53a92233d4c6f60b726ec5bccde90ed3 # v0.7.4
+    uses: action-stars/generic-workflows/.github/workflows/dependabot-changelog.yaml@d957d704303a8454282dc346eb7de9254376919c # v0.8.0
     permissions:
       contents: read
       id-token: write

.github/workflows/_release.yaml

@@ -8,6 +8,6 @@ on:
 jobs:
   workflow:
     name: Workflow
-    uses: action-stars/generic-workflows/.github/workflows/release.yaml@8888aa6d53a92233d4c6f60b726ec5bccde90ed3 # v0.7.4
+    uses: action-stars/generic-workflows/.github/workflows/release.yaml@d957d704303a8454282dc346eb7de9254376919c # v0.8.0
     permissions:
       contents: write

.github/workflows/_validate.yaml

@@ -17,7 +17,7 @@ permissions: read-all
 jobs:
   workflow:
     name: Workflow
-    uses: action-stars/generic-workflows/.github/workflows/validate-gh-workflows.yaml@8888aa6d53a92233d4c6f60b726ec5bccde90ed3 # v0.7.4
+    uses: action-stars/generic-workflows/.github/workflows/validate-gh-workflows.yaml@d957d704303a8454282dc346eb7de9254376919c # v0.8.0
     with:
       auto_doc: true
       markdownlint: true

.github/workflows/build-oci-image.yaml

@@ -98,7 +98,7 @@ jobs:
       artifact_key: ${{ steps.setup.outputs.artifact_key }}
     steps:
       - name: Checkout
-        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           fetch-depth: 2
 
@@ -153,7 +153,7 @@ jobs:
           echo "path=${sarif_path}" >> "${GITHUB_OUTPUT}"
 
       - name: Upload Hadolint SARIF report
-        uses: github/codeql-action/upload-sarif@cdefb33c0f6224e58673d9004f47f7cb3e328b89 # v3.29.5
+        uses: github/codeql-action/upload-sarif@0d579ffd059c29b07949a3cce3983f0780820c98 # v3.29.5
         if: inputs.push_sarif
         with:
           category: hadolint-${{ steps.setup.outputs.artifact_key }}
@@ -186,7 +186,7 @@ jobs:
         shell: bash
     steps:
       - name: Checkout
-        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           fetch-depth: 2
 
@@ -356,7 +356,7 @@ jobs:
           echo "path=${sarif_path}" >> "${GITHUB_OUTPUT}"
 
       - name: Upload Grype SARIF report
-        uses: github/codeql-action/upload-sarif@cdefb33c0f6224e58673d9004f47f7cb3e328b89 # v3.29.5
+        uses: github/codeql-action/upload-sarif@0d579ffd059c29b07949a3cce3983f0780820c98 # v3.29.5
         if: inputs.scan_image && inputs.push_sarif
         with:
           category: grype-${{ steps.setup.outputs.artifact_key }}
@@ -438,7 +438,7 @@ jobs:
           annotations: ${{ inputs.annotations }}
 
       - name: Setup Crane
-        uses: imjasonh/setup-crane@31b88efe9de28ae0ffa220711af4b60be9435f6e # v0.4
+        uses: imjasonh/setup-crane@6da1ae018866400525525ce74ff892880c099987 # v0.5
 
       - name: Build OCI manifest image
         id: manifest
@@ -490,7 +490,7 @@ jobs:
           show-summary: true
 
       - name: Install Cosign
-        uses: sigstore/cosign-installer@faadad0cce49287aee09b3a48701e75088a2c6ad # v4.0.0
+        uses: sigstore/cosign-installer@ba7bc0a3fef59531c69a25acd34668d6d3fe6f22 # v4.1.0
 
       - name: Sign image
         run: |

CHANGELOG.md

@@ -26,6 +26,13 @@
 - Update _[actions/download-artifact](https://github.com/actions/download-artifact)_ from `6.0.0` to `7.0.0`. ([#56](https://github.com/action-stars/build-workflows/pull/56)) _@dependabot_
 - Update _[actions/upload-artifact](https://github.com/actions/upload-artifact)_ from `5.0.0` to `6.0.0`. ([#57](https://github.com/action-stars/build-workflows/pull/57)) _@dependabot_
 - Update _github/codeql-action_ from `4.31.9` to `4.31.10`. ([#58](https://github.com/action-stars/build-workflows/pull/58)) _@dependabot_
+- Update _action-stars/generic-workflows/.github/workflows/dependabot-changelog.yaml_ from `0.7.4` to `0.8.0`. ([#64](https://github.com/action-stars/build-workflows/pull/64)) _@dependabot_
+- Update _action-stars/generic-workflows/.github/workflows/release.yaml_ from `0.7.4` to `0.8.0`. ([#64](https://github.com/action-stars/build-workflows/pull/64)) _@dependabot_
+- Update _action-stars/generic-workflows/.github/workflows/validate-gh-workflows.yaml_ from `0.7.4` to `0.8.0`. ([#64](https://github.com/action-stars/build-workflows/pull/64)) _@dependabot_
+- Update _actions/checkout_ from `6.0.1` to `6.0.2`. ([#64](https://github.com/action-stars/build-workflows/pull/64)) _@dependabot_
+- Update _github/codeql-action_ from `4.31.10` to `4.32.6`. ([#64](https://github.com/action-stars/build-workflows/pull/64)) _@dependabot_
+- Update _imjasonh/setup-crane_ from `0.4` to `0.5`. ([#64](https://github.com/action-stars/build-workflows/pull/64)) _@dependabot_
+- Update _sigstore/cosign-installer_ from `4.0.0` to `4.1.0`. ([#64](https://github.com/action-stars/build-workflows/pull/64)) _@dependabot_
 
 ## [v0.10.3] - 2025-11-26