build(deps): bump azure/trusted-signing-action from 0.5.0 to 0.5.9 (#1989)

Bumps
[azure/trusted-signing-action](https://github.com/azure/trusted-signing-action)
from 0.5.0 to 0.5.9.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/azure/trusted-signing-action/releases">azure/trusted-signing-action's
releases</a>.</em></p>
<blockquote>
<h2>v0.5.9</h2>
<h2>What's Changed</h2>
<ul>
<li>Update README.md to reflect new tags by <a
href="https://github.com/japarson"><code>@​japarson</code></a> in <a
href="https://redirect.github.com/Azure/trusted-signing-action/pull/71">Azure/trusted-signing-action#71</a></li>
<li>Update README requirements to advise NET8 over NET6 by <a
href="https://github.com/japarson"><code>@​japarson</code></a> in <a
href="https://redirect.github.com/Azure/trusted-signing-action/pull/73">Azure/trusted-signing-action#73</a></li>
<li>Add new correlation id input and bump dependencies by <a
href="https://github.com/japarson"><code>@​japarson</code></a> in <a
href="https://redirect.github.com/Azure/trusted-signing-action/pull/85">Azure/trusted-signing-action#85</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/Azure/trusted-signing-action/compare/v0...v0.5.9">https://github.com/Azure/trusted-signing-action/compare/v0...v0.5.9</a></p>
<h2>v0.5.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Fix issue where dependencies sometimes being installed incorrectly
by <a href="https://github.com/japarson"><code>@​japarson</code></a> in
<a
href="https://redirect.github.com/Azure/trusted-signing-action/pull/65">Azure/trusted-signing-action#65</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/Azure/trusted-signing-action/compare/v0.5.0...v0.5.1">https://github.com/Azure/trusted-signing-action/compare/v0.5.0...v0.5.1</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/Azure/trusted-signing-action/commit/bb15ca63eb5548cc306f4f335c5617bb414abcad"><code>bb15ca6</code></a>
Add new correlation id input and bump dependencies (<a
href="https://redirect.github.com/azure/trusted-signing-action/issues/85">#85</a>)</li>
<li><a
href="https://github.com/Azure/trusted-signing-action/commit/cfde94d09c3d1c8d144b3ec189cfedcca3986aad"><code>cfde94d</code></a>
Update README requirements to advise NET8 over NET6 (<a
href="https://redirect.github.com/azure/trusted-signing-action/issues/73">#73</a>)</li>
<li><a
href="https://github.com/Azure/trusted-signing-action/commit/21d101d6d485e6332bd1888bb4fe7372f1084442"><code>21d101d</code></a>
Update README.md to reflect new tags (<a
href="https://redirect.github.com/azure/trusted-signing-action/issues/71">#71</a>)</li>
<li><a
href="https://github.com/Azure/trusted-signing-action/commit/0d74250c661747df006298d0fb49944c10f16e03"><code>0d74250</code></a>
Fix issue where dependencies sometimes being installed incorrectly (<a
href="https://redirect.github.com/azure/trusted-signing-action/issues/65">#65</a>)</li>
<li>See full diff in <a
href="https://github.com/azure/trusted-signing-action/compare/v0.5.0...v0.5.9">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=azure/trusted-signing-action&package-manager=github_actions&previous-version=0.5.0&new-version=0.5.9)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

You can trigger a rebase of this PR by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

> **Note**
> Automatic rebases have been disabled on this pull request as it has
been open for over 30 days.

Author: dscho

.github/workflows/release.yml

@@ -177,7 +177,7 @@ jobs:
         subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
 
     - name: Sign payload files with Azure Code Signing
-      uses: azure/[email protected].0
+      uses: azure/[email protected].9
       with:
         endpoint: https://wus2.codesigning.azure.net/
         trusted-signing-account-name: git-fundamentals-signing
@@ -204,7 +204,7 @@ jobs:
          -Destination $env:GITHUB_WORKSPACE\installers
 
     - name: Sign installers with Azure Code Signing
-      uses: azure/[email protected].0
+      uses: azure/[email protected].9
       with:
         endpoint: https://wus2.codesigning.azure.net/
         trusted-signing-account-name: git-fundamentals-signing