chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
actions/create-github-app-token	action	patch	v1.11.3 -> v1.11.5
step-security/harden-runner	action	minor	v2.10.4 -> v2.11.0

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

actions/create-github-app-token (actions/create-github-app-token)

v1.11.5

Compare Source

Bug Fixes

• deps: bump @​octokit/request from 9.2.0 to 9.2.2 (#​209) (8cedd97), closes #​740 #​738 #​740 #​737 #​738 #​736 #​735 #​734 #​733 #​732
• deps: bump @​octokit/request-error from 6.1.6 to 6.1.7 (#​208) (415f6a5), closes #​494 #​491 #​490 #​488 #​486 #​487 #​485 #​484

v1.11.4

Compare Source

Bug Fixes

• deps: bump @​octokit/endpoint from 10.1.1 to 10.1.3 (#​207) (d30def8), closes #​507 #​514 #​512 #​511 #​509 #​508 #​507 #​506 #​505 #​504

step-security/harden-runner (step-security/harden-runner)

v2.11.0

Compare Source

What's Changed

Release v2.11.0 in #​498
Harden-Runner Enterprise tier now supports the use of eBPF for DNS resolution and network call monitoring

Full Changelog: step-security/harden-runner@v2...v2.11.0

---

Configuration

📅 Schedule: Branch creation - "* 0-3 * * 1" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

🦙 MegaLinter status: ⚠️ WARNING

Descriptor	Linter	Files	Fixed	Errors	Elapsed time
✅ ACTION	actionlint	5		0	0.3s
✅ COPYPASTE	jscpd	yes		no	1.05s
✅ DOCKERFILE	hadolint	1		0	0.1s
✅ JSON	jsonlint	5		0	0.19s
✅ JSON	prettier	5		0	0.51s
✅ JSON	v8r	5		0	3.26s
⚠️ MARKDOWN	markdownlint	2		3	0.88s
✅ MARKDOWN	markdown-link-check	2		0	4.68s
⚠️ MARKDOWN	markdown-table-formatter	2		1	0.5s
✅ PYTHON	bandit	1		0	3.74s
✅ PYTHON	black	1		0	1.27s
✅ PYTHON	flake8	1		0	2.67s
✅ PYTHON	isort	1		0	0.22s
✅ PYTHON	mypy	1		0	3.58s
✅ PYTHON	pylint	1		0	2.05s
✅ PYTHON	pyright	1		0	1.74s
✅ PYTHON	ruff	1		0	0.08s
✅ REPOSITORY	checkov	yes		no	21.58s
✅ REPOSITORY	dustilock	yes		no	0.04s
✅ REPOSITORY	gitleaks	yes		no	1.04s
✅ REPOSITORY	git_diff	yes		no	0.01s
✅ REPOSITORY	grype	yes		no	14.08s
✅ REPOSITORY	kics	yes		no	3.6s
✅ REPOSITORY	secretlint	yes		no	0.74s
✅ REPOSITORY	syft	yes		no	2.38s
✅ REPOSITORY	trivy	yes		no	7.64s
✅ REPOSITORY	trivy-sbom	yes		no	0.14s
✅ REPOSITORY	trufflehog	yes		no	2.89s
✅ YAML	prettier	7		0	0.72s
✅ YAML	v8r	7		0	5.34s
✅ YAML	yamllint	7		0	0.58s

See detailed report in MegaLinter reports

You could have same capabilities but better runtime performances if you request a new MegaLinter flavor.

• Click here to request the new flavor

[github-actions]

Trivy image scan report

ghcr.io/chgl/github-reusable-workflow-without-test-image:pr-139 (debian 12.9)

1 known vulnerabilities found (CRITICAL: 0 HIGH: 0 MEDIUM: 1 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
libtasn1-6	CVE-2024-12133	MEDIUM	4.19.0-2	4.19.0-2+deb12u1

No Misconfigurations found

Python

No Vulnerabilities found

No Misconfigurations found

[github-actions]

Trivy image scan report

ghcr.io/chgl/github-reusable-workflow:pr-139 (debian 12.9)

1 known vulnerabilities found (CRITICAL: 0 HIGH: 0 MEDIUM: 1 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
libtasn1-6	CVE-2024-12133	MEDIUM	4.19.0-2	4.19.0-2+deb12u1

No Misconfigurations found

Python

No Vulnerabilities found

No Misconfigurations found

[github-actions]

🎉 This PR is included in version 1.10.12 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀