[BUG] Use of codecov-action action leaves git repository in dirty state

[ssbarnea]

Describe the bug

Apparently execution of the actions created these untracked files inside the project directory, so git will report dirty state.

codecov
codecov.SHA256SUM
codecov.SHA256SUM.sig

This breaks the CI pipelines for users that do check that does not reports untracked files after test execution, which is a very good practice.

A workaround is to add these files to project .gitignore but that should NOT be needed.

To Reproduce

Run git status after running the action.

Expected behavior

No untracked files are created. Any temporary files used by the action should not be created inside the project directory (use temp instead).

Commit and CI link
Provide the commit SHA and CI link. If applicable, provide the entire Codecov output from CI.

Additional context
Add any other context about the problem here.

[linear]

CCMRG-1478 [BUG] Use of codecov-action action leaves git repository in dirty state

[mrgrain]

This is pretty bad. We run a check after each build to ensure the repo contents are unchanged. Codecov now breaks this check.