ci(deps): bump actions/dependency-review-action from 4.6.0 to 4.7.0 in the github-actions group (#798)

dependabot[bot] · rjaegers · web-flow · commit 19ffa351ad28 · 2025-05-19T07:17:30.000Z
ci(deps): bump actions/dependency-review-action Bumps the github-actions group with 1 update: [actions/dependency-review-action](https://github.com/actions/dependency-review-action). Updates `actions/dependency-review-action` from 4.6.0 to 4.7.0 - [Release notes](https://github.com/actions/dependency-review-action/releases) - [Commits](actions/dependency-review-action@ce3cf95...38ecb5b) --- updated-dependencies: - dependency-name: actions/dependency-review-action dependency-version: 4.7.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Ron <45816308+rjaegers@users.noreply.github.com>
diff --git a/.github/workflows/build-push.yml b/.github/workflows/build-push.yml
@@ -113,7 +113,7 @@ jobs:
         with:
           image: ${{ env.REGISTRY }}/${{ github.repository }}-${{ matrix.flavor }}@${{ steps.build-and-push.outputs.digest }}
           dependency-snapshot: true
-      - uses: actions/dependency-review-action@ce3cf9537a52e8119d91fd484ab5b8a807627bf8 # v4.6.0
+      - uses: actions/dependency-review-action@38ecb5b593bf0eb19e335c03f97670f792489a8b # v4.7.0
         if: github.event_name == 'pull_request'
         with:
           comment-summary-in-pr: on-failure
