chore(deps): update gradle/actions action to v4.3.0

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
gradle/actions	action	minor	v4.2.2 -> v4.3.0

---

Release Notes

gradle/actions (gradle/actions)

v4.3.0

Compare Source

This release brings some significant improvements to cache-cleanup and dependency-submission:

• Cleanup cache entries written by newly released Gradle versions (#​436)
• Use existing Gradle wrapper distribution for cache-cleanup where possible (#​515)
• Automatically save each dependency-graph that is submitted by dependency-submission (#​519)
• Fix deprecation warnings emitted by Gradle 8.12+ when:
  • Using build-scan-publish: true or Develocity injection (#​543)
  • Using dependency-submission with an authenticated plugin repository with Gradle (#​541)
• Fix warning when using toolchain support with Gradle 7.x (#​511)

What's Changed

• Update known wrapper checksums by @​github-actions in https://github.com/gradle/actions/pull/493
• Fix typo in cache-reporting.ts by @​SimonMarquis in https://github.com/gradle/actions/pull/492
• Bump Gradle Wrappers by @​github-actions in https://github.com/gradle/actions/pull/499
• Bump the github-actions group across 3 directories with 7 updates by @​dependabot in https://github.com/gradle/actions/pull/510
• Bump the npm-dependencies group across 1 directory with 6 updates by @​dependabot in https://github.com/gradle/actions/pull/512
• Clean-up missing imports for tests by @​bigdaz in https://github.com/gradle/actions/pull/513
• Bump the npm-dependencies group in /sources with 3 updates by @​dependabot in https://github.com/gradle/actions/pull/521
• Add npm build scans by @​bigdaz in https://github.com/gradle/actions/pull/517
• Avoid env-var interpolation in toolchains.xml by @​bigdaz in https://github.com/gradle/actions/pull/518
• Avoid saving build-results for cache cleanup by @​bigdaz in https://github.com/gradle/actions/pull/520
• Save dependency graph as workflow artifact by @​bigdaz in https://github.com/gradle/actions/pull/522
• Update to CCUDGP 2.1 by @​bigdaz in https://github.com/gradle/actions/pull/524
• Bump references to Develocity Gradle plugin from 3.19 to 3.19.1 by @​bot-githubaction in https://github.com/gradle/actions/pull/527
• Choose best Gradle version to use for cache cleanup by @​bigdaz in https://github.com/gradle/actions/pull/526
• Uppercase cache-encryption-key by @​Goooler in https://github.com/gradle/actions/pull/528
• Attempt to use gradle wrapper for cache cleanup by @​bigdaz in https://github.com/gradle/actions/pull/525
• Document GRADLE_ACTIONS_SKIP_BUILD_RESULT_CAPTURE by @​bigdaz in https://github.com/gradle/actions/pull/529
• Update known wrapper checksums by @​github-actions in https://github.com/gradle/actions/pull/509
• Bump Gradle Wrappers by @​github-actions in https://github.com/gradle/actions/pull/535
• Bump the github-actions group across 2 directories with 2 updates by @​dependabot in https://github.com/gradle/actions/pull/538
• Update undici to resolve vulnerability by @​bigdaz in https://github.com/gradle/actions/pull/536
• Bump the npm-dependencies group across 1 directory with 2 updates by @​dependabot in https://github.com/gradle/actions/pull/539
• Update docs for dependency review by @​bigdaz in https://github.com/gradle/actions/pull/540
• Fix space assignment deprecations in init-scripts by @​bigdaz in https://github.com/gradle/actions/pull/542

New Contributors

• @​SimonMarquis made their first contribution in https://github.com/gradle/actions/pull/492

Full Changelog: gradle/actions@v4.2.2...v4.3.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[trask]

I prefer the full v4.2.2 version here like we get in instrumentation repo...

[trask]

using https://app.stepsecurity.io/securerepo to make initial PR instead

it seems like Renovate will continue keeping the comment up-to-date if we start out that way (as we've seen in the instrumentation repo)