ci(deps): Bump actions/create-github-app-token from 2.1.1 to 2.1.4 (#17825)

Bumps
[actions/create-github-app-token](https://github.com/actions/create-github-app-token)
from 2.1.1 to 2.1.4.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/create-github-app-token/releases">actions/create-github-app-token's
releases</a>.</em></p>
<blockquote>
<h2>v2.1.4</h2>
<h2><a
href="https://github.com/actions/create-github-app-token/compare/v2.1.3...v2.1.4">2.1.4</a>
(2025-09-13)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> bump <code>@​octokit/auth-app</code> from
7.2.1 to 8.0.1 (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/257">#257</a>)
(<a
href="https://github.com/actions/create-github-app-token/commit/bef1eaf1c0ac2b148ee2a0a74c65fbe6db0631f1">bef1eaf</a>)</li>
</ul>
<h2>v2.1.3</h2>
<h2><a
href="https://github.com/actions/create-github-app-token/compare/v2.1.2...v2.1.3">2.1.3</a>
(2025-09-13)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> bump undici from 7.8.0 to 7.10.0 in the
production-dependencies group (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/254">#254</a>)
(<a
href="https://github.com/actions/create-github-app-token/commit/f3d5ec20739b0cf6f0d52e5a051b65484c378ec9">f3d5ec2</a>)</li>
</ul>
<h2>v2.1.2</h2>
<h2><a
href="https://github.com/actions/create-github-app-token/compare/v2.1.1...v2.1.2">2.1.2</a>
(2025-09-12)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> bump <code>@​octokit/request</code> from
9.2.3 to 10.0.2 (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/256">#256</a>)
(<a
href="https://github.com/actions/create-github-app-token/commit/5d7307be63501c0070c634b0ae8fec74e8208130">5d7307b</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/actions/create-github-app-token/commit/67018539274d69449ef7c02e8e71183d1719ab42"><code>6701853</code></a>
build(release): 2.1.4 [skip ci]</li>
<li><a
href="https://github.com/actions/create-github-app-token/commit/bef1eaf1c0ac2b148ee2a0a74c65fbe6db0631f1"><code>bef1eaf</code></a>
fix(deps): bump <code>@​octokit/auth-app</code> from 7.2.1 to 8.0.1 (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/257">#257</a>)</li>
<li><a
href="https://github.com/actions/create-github-app-token/commit/1526738aa46502312d4f6ba7779d432c61dc4e36"><code>1526738</code></a>
build(release): 2.1.3 [skip ci]</li>
<li><a
href="https://github.com/actions/create-github-app-token/commit/f3d5ec20739b0cf6f0d52e5a051b65484c378ec9"><code>f3d5ec2</code></a>
fix(deps): bump undici from 7.8.0 to 7.10.0 in the
production-dependencies gr...</li>
<li><a
href="https://github.com/actions/create-github-app-token/commit/def152b8a737443d7af6c5722c6389146fe90c90"><code>def152b</code></a>
build(release): 2.1.2 [skip ci]</li>
<li><a
href="https://github.com/actions/create-github-app-token/commit/5d7307be63501c0070c634b0ae8fec74e8208130"><code>5d7307b</code></a>
fix(deps): bump <code>@​octokit/request</code> from 9.2.3 to 10.0.2 (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/256">#256</a>)</li>
<li><a
href="https://github.com/actions/create-github-app-token/commit/525760a53ff3ae31661275c3461bff7181a54c90"><code>525760a</code></a>
build(deps): bump stefanzweifel/git-auto-commit-action from 5.2.0 to
6.0.1 (#...</li>
<li><a
href="https://github.com/actions/create-github-app-token/commit/8ab05a8a84060745bdc8f0b4f6d8f403c29e06b8"><code>8ab05a8</code></a>
Add beta branch support for releases (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/282">#282</a>)</li>
<li><a
href="https://github.com/actions/create-github-app-token/commit/d00315e88cbf932b0754df7a395f556a41b682e4"><code>d00315e</code></a>
build(deps): bump actions/checkout from 4 to 5 (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/279">#279</a>)</li>
<li><a
href="https://github.com/actions/create-github-app-token/commit/fcc6c288e5046f2c3614766b9abb3c41fc5b56c6"><code>fcc6c28</code></a>
build(deps-dev): bump dotenv from 16.5.0 to 17.2.1 (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/269">#269</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/actions/create-github-app-token/compare/a8d616148505b5069dccd32f177bb87d7f39123b...67018539274d69449ef7c02e8e71183d1719ab42">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/create-github-app-token&package-manager=github_actions&previous-version=2.1.1&new-version=2.1.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

You can trigger a rebase of this PR by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

<!-- CURSOR_SUMMARY -->
---

> [!NOTE]
> Update actions/create-github-app-token from 2.1.1 to 2.1.4 in
auto-release and release workflows.
> 
> - **CI Workflows**:
> - Bump `actions/create-github-app-token` to `v2.1.4` in
`.github/workflows/auto-release.yml` and
`.github/workflows/release.yml`.
> 
> <sup>Written by [Cursor
Bugbot](https://cursor.com/dashboard?tab=bugbot) for commit
e8434a8. This will update automatically
on new commits. Configure
[here](https://cursor.com/dashboard?tab=bugbot).</sup>
<!-- /CURSOR_SUMMARY -->

> **Note**
> Automatic rebases have been disabled on this pull request as it has
been open for over 30 days.

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jan Peer Stöcklmair <[email protected]>

Author: dependabot[bot]

.github/workflows/auto-release.yml

@@ -15,7 +15,7 @@ jobs:
     steps:
       - name: Get auth token
         id: token
-        uses: actions/create-github-app-token@a8d616148505b5069dccd32f177bb87d7f39123b # v2.1.1
+        uses: actions/create-github-app-token@67018539274d69449ef7c02e8e71183d1719ab42 # v2.1.4
         with:
           app-id: ${{ vars.SENTRY_RELEASE_BOT_CLIENT_ID }}
           private-key: ${{ secrets.SENTRY_RELEASE_BOT_PRIVATE_KEY }}

.github/workflows/release.yml

@@ -19,7 +19,7 @@ jobs:
     steps:
       - name: Get auth token
         id: token
-        uses: actions/create-github-app-token@a8d616148505b5069dccd32f177bb87d7f39123b # v2.1.1
+        uses: actions/create-github-app-token@67018539274d69449ef7c02e8e71183d1719ab42 # v2.1.4
         with:
           app-id: ${{ vars.SENTRY_RELEASE_BOT_CLIENT_ID }}
           private-key: ${{ secrets.SENTRY_RELEASE_BOT_PRIVATE_KEY }}