build(deps): bump the patch-minor-action-updates group across 1 directory with 5 updates

[dependabot]

Bumps the patch-minor-action-updates group with 5 updates in the / directory:

Package	From	To
hendrikmuhs/ccache-action	1.2.17	1.2.18
carlosperate/arm-none-eabi-gcc-action	1.10.0	1.10.1
oxsecurity/megalinter	8.5.0	8.7.0
github/codeql-action	3.28.16	3.28.18
actions/create-github-app-token	2.0.2	2.0.6

Updates hendrikmuhs/ccache-action from 1.2.17 to 1.2.18

Release notes

Sourced from hendrikmuhs/ccache-action's releases.

v1.2.18

What's Changed

• Bump ts-jest from 29.2.5 to 29.2.6 by @​dependabot in hendrikmuhs/ccache-action#291
• Bump typescript from 5.7.3 to 5.8.2 by @​dependabot in hendrikmuhs/ccache-action#294
• Bump @​types/node from 22.13.0 to 22.13.9 by @​dependabot in hendrikmuhs/ccache-action#296
• set cache to readonly if skipping save by @​planetmarshall in hendrikmuhs/ccache-action#301
• Update sccache version to v0.10.0 by @​mhegazy in hendrikmuhs/ccache-action#315
• Bump @​types/node from 22.13.9 to 22.15.2 by @​dependabot in hendrikmuhs/ccache-action#316
• Bump ts-jest from 29.2.6 to 29.3.2 by @​dependabot in hendrikmuhs/ccache-action#312
• Bump typescript from 5.8.2 to 5.8.3 by @​dependabot in hendrikmuhs/ccache-action#311
• Bump @​actions/cache from 4.0.0 to 4.0.3 by @​dependabot in hendrikmuhs/ccache-action#299
• Don't append - when append-timestamp is disabled. by @​Naros in hendrikmuhs/ccache-action#306

New Contributors

• @​mhegazy made their first contribution in hendrikmuhs/ccache-action#315
• @​Naros made their first contribution in hendrikmuhs/ccache-action#306

Full Changelog: hendrikmuhs/ccache-action@v1...v1.2.18

Commits

• 63069e3 update code
• 15457da Don't append - when append-timestamp is disabled. (#306)
• 25d49ca update code
• 5107eae Bump @​actions/cache from 4.0.0 to 4.0.3 (#299)
• 0be57ad Bump typescript from 5.8.2 to 5.8.3 (#311)
• 82ea688 Bump ts-jest from 29.2.6 to 29.3.2 (#312)
• 1442e5b Bump ts-jest from 29.2.6 to 29.3.2 (#312)
• e3bfc65 Bump @​types/node from 22.13.9 to 22.15.2 (#316)
• fc91011 Update sccache version to v0.10.0 (#315)
• 15fe4dd set cache to readonly if skipping save (#301)
• Additional commits viewable in compare view

Updates carlosperate/arm-none-eabi-gcc-action from 1.10.0 to 1.10.1

Release notes

Sourced from carlosperate/arm-none-eabi-gcc-action's releases.

v1.10.1

Fixed

• Upated @​actions/cache to v4 (#64). v3 is deprecated and was triggering a warning: Failed to restore: Cache service responded with 422

Security

• Security update for third party dependencies (#63) (#65)

Full Changelog: carlosperate/arm-none-eabi-gcc-action@v1...v1.10.1

Changelog

Sourced from carlosperate/arm-none-eabi-gcc-action's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

v1.10.1 - 2025-05-21

Fixed

• Upated @​actions/cache to v4 (#64). v3 is deprecated and was triggering a warning: Failed to restore: Cache service responded with 422

Security

• Security update for third party dependencies (#65)

v1.10.0 - 2024-12-12

Added

• Add 14.2.Rel1 Arm GNU Toolchain release (#61)

v1.9.1 - 2024-08-02

Fixed

• In macOS arm64, if a GCC version doesn't have an arm64 release, use x86_64 instead

Changed

• Better error message when a GCC version does not have a release for the platform

v1.9.0 - 2024-07-15

Added

• Add 13.3.Rel1 Arm GNU Toolchain release (#55)
• Add support for Linux arm64 GH Actions runners (#48) (thanks @​leoli0605 !)
• Add support for macOS arm64 GH Actions runner

Security

• Security update for third party dependencies (#52) (#53)

v1.8.2 - 2024-05-29

Changed

• Updated @actions core and cache dependency.

v1.8.1 - 2024-01-29

Changed

• Move action from node v16 to v20 (#50)

v1.8.0 - 2023-10-31

Added

• Add 13.2.Rel1 Arm GNU Toolchain release (#47)

v1.7.1 - 2023-08-08

Security

• Security update for third party dependencies.
  • carlosperate/arm-none-eabi-gcc-action#44

v1.7.0 - 2023-08-06

Added

... (truncated)

Commits

• a532c97 Project: Uprev to v1.10.1 & update changelog.
• 665418a Project: Upade @​actions/cache to v4, as v3 is deprecated.
• 5267f62 Bump undici from 5.28.5 to 5.29.0 (#65)
• 34d0fd1 CI: Update Ubuntu runner from deprecated 20.04 to 22.04.
• 9ecf728 Bump undici from 5.28.4 to 5.28.5 (#63)
• 469aef6 CI: Move from self-hosted-linux-arm64 to GH provided ubuntu-22.04-arm.
• eb1bf62 Tests: Increase timeout, as 4.7-2013-q1 tmpInstall gets aborted otherwise.
• 9ba50d8 CI: Update new release checker to check for releases after December 10th 2024.
• 0af4fc6 Docs: Improve self-hosted runner dev docs.
• See full diff in compare view

Updates oxsecurity/megalinter from 8.5.0 to 8.7.0

Release notes

Sourced from oxsecurity/megalinter's releases.

v8.7.0

What's Changed

• Core

  • Replace pychalk (not maintained for 7 years) by termcolor, by @​nvuillam in oxsecurity/megalinter#5316
  • Update make scripts so they also work on Windows, by @​nvuillam in oxsecurity/megalinter#5316
  • Align number columns of markdown tables in reports, by @​nvuillam in oxsecurity/megalinter#4835

• Linters enhancements

  • Add new CSharpier supported file extensions, by @​bdovaz in oxsecurity/megalinter#5292

• Fixes

  • Exclude from sanitization the regular expressions that have awful performances, by @​nvuillam in oxsecurity/megalinter#5308
  • New variable SKIP_LINTER_OUTPUT_SANITIZATION to skip sanitization to improve performances if you are on a private repository with secured access, by @​nvuillam in oxsecurity/megalinter#5308

• Linter versions upgrades (27)

  • ansible-lint from 25.2.1 to 25.4.0
  • bicep_linter from 0.34.44 to 0.35.1
  • cfn-lint from 1.34.1 to 1.34.2
  • checkov from 3.2.404 to 3.2.413
  • checkstyle from 10.23.0 to 10.23.1
  • csharpier from 0.30.6 to 1.0.1
  • cspell from 8.19.2 to 8.19.4
  • gitleaks from 8.24.3 to 8.25.1
  • golangci-lint from 1.64.8 to 2.1.5
  • lightning-flow-scanner from 3.4.0 to 3.8.0
  • phpstan from 2.1.12 to 2.1.14
  • pmd from 7.12.0 to 7.13.0
  • powershell from 7.5.0 to 7.5.1
  • protolint from 0.53.0 to 0.54.1
  • psalm from 6.10.1 to 6.10.2
  • rubocop from 1.75.3 to 1.75.4
  • ruff from 0.11.6 to 0.11.8
  • ruff-format from 0.11.6 to 0.11.8
  • secretlint from 9.3.1 to 9.3.2
  • stylelint from 16.19.0 to 16.19.1
  • terragrunt from 0.77.22 to 0.78.0
  • tflint from 0.56.0 to 0.57.0
  • trivy from 0.61.1 to 0.62.0
  • trivy-sbom from 0.61.1 to 0.62.0
  • v8r from 4.3.0 to 4.4.0
  • yamllint from 1.37.0 to 1.37.1

Full Changelog: oxsecurity/megalinter@v8.6.0...v8.7.0

v8.6.0

What's Changed

... (truncated)

Changelog

Sourced from oxsecurity/megalinter's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[Unreleased] (beta, main branch content)

Note: Can be used with oxsecurity/megalinter@beta in your GitHub Action mega-linter.yml file, or with oxsecurity/megalinter:beta docker image

• Core

• New linters

• Disabled linters

• Media

• Linters enhancements

• Fixes

  • Fix crash when the markdown table summary is empty

• Reporters

• Doc

• Flavors

• CI

• mega-linter-runner

• Linter versions upgrades (N)

  • golangci-lint from 2.1.5 to 2.1.6 on 2025-05-04
  • pylint from 3.3.6 to 3.3.7 on 2025-05-04
  • lightning-flow-scanner from 3.8.0 to 3.11.0 on 2025-05-05
  • psalm from Psalm.6.10.2@ to Psalm.6.10.3@ on 2025-05-06
  • trufflehog from 3.88.27 to 3.88.28 on 2025-05-06
  • rubocop from 1.75.4 to 1.75.5 on 2025-05-06
  • lightning-flow-scanner from 3.11.0 to 3.12.0 on 2025-05-06
  • trivy-sbom from 0.62.0 to 0.62.1 on 2025-05-09
  • trivy from 0.62.0 to 0.62.1 on 2025-05-09
  • scalafix from 0.14.2 to 0.14.3 on 2025-05-09
  • cspell from 8.19.4 to 9.0.1 on 2025-05-09
  • lightning-flow-scanner from 3.12.0 to 3.12.1 on 2025-05-09
  • trufflehog from 3.88.28 to 3.88.29 on 2025-05-09
  • cfn-lint from 1.34.2 to 1.35.1 on 2025-05-10
  • ruff-format from 0.11.8 to 0.11.9 on 2025-05-10
  • ruff from 0.11.8 to 0.11.9 on 2025-05-10

... (truncated)

Commits

• 5a91fb0 Release MegaLinter v8.7.0
• 940b9d0 [automation] Auto-update linters version, help and documentation (#5334)
• 61a6678 chore(deps): update ghcr.io/astral-sh/uv docker tag to v0.7.2 (#5336)
• 4f16aac chore(deps): update dependency astral-sh/uv to v0.7.2 (#5335)
• c0d5a5c Align number columns of markdown tables in reports (#4835)
• b52216a [automation] Auto-update linters version, help and documentation (#5330)
• 636085e chore(deps): update dependency yamllint to v1.37.1 (#5333)
• d96277c chore(deps): update dependency eslint-plugin-prettier to v5.3.1 (#5332)
• 8b2f83f chore(deps): update dependency redis to v6 (#5329)
• 87cb4a8 chore(deps): update zricethezav/gitleaks docker tag to v8.25.1 (#5328)
• Additional commits viewable in compare view

Updates github/codeql-action from 3.28.16 to 3.28.18

Release notes

Sourced from github/codeql-action's releases.

v3.28.18

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.18 - 16 May 2025

• Update default CodeQL bundle version to 2.21.3. #2893
• Skip validating SARIF produced by CodeQL for improved performance. #2894
• The number of threads and amount of RAM used by CodeQL can now be set via the CODEQL_THREADS and CODEQL_RAM runner environment variables. If set, these environment variables override the threads and ram inputs respectively. #2891

See the full CHANGELOG.md for more information.

v3.28.17

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.17 - 02 May 2025

• Update default CodeQL bundle version to 2.21.2. #2872

See the full CHANGELOG.md for more information.

Changelog

Sourced from github/codeql-action's changelog.

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

[UNRELEASED]

No user facing changes.

3.28.18 - 16 May 2025

• Update default CodeQL bundle version to 2.21.3. #2893
• Skip validating SARIF produced by CodeQL for improved performance. #2894
• The number of threads and amount of RAM used by CodeQL can now be set via the CODEQL_THREADS and CODEQL_RAM runner environment variables. If set, these environment variables override the threads and ram inputs respectively. #2891

3.28.17 - 02 May 2025

• Update default CodeQL bundle version to 2.21.2. #2872

3.28.16 - 23 Apr 2025

• Update default CodeQL bundle version to 2.21.1. #2863

3.28.15 - 07 Apr 2025

• Fix bug where the action would fail if it tried to produce a debug artifact with more than 65535 files. #2842

3.28.14 - 07 Apr 2025

• Update default CodeQL bundle version to 2.21.0. #2838

3.28.13 - 24 Mar 2025

No user facing changes.

3.28.12 - 19 Mar 2025

• Dependency caching should now cache more dependencies for Java build-mode: none extractions. This should speed up workflows and avoid inconsistent alerts in some cases.
• Update default CodeQL bundle version to 2.20.7. #2810

3.28.11 - 07 Mar 2025

• Update default CodeQL bundle version to 2.20.6. #2793

3.28.10 - 21 Feb 2025

• Update default CodeQL bundle version to 2.20.5. #2772
• Address an issue where the CodeQL Bundle would occasionally fail to decompress on macOS. #2768

3.28.9 - 07 Feb 2025

... (truncated)

Commits

• ff0a06e Merge pull request #2896 from github/update-v3.28.18-b86edfc27
• a41e084 Update changelog for v3.28.18
• b86edfc Merge pull request #2893 from github/update-bundle/codeql-bundle-v2.21.3
• e93b900 Merge branch 'main' into update-bundle/codeql-bundle-v2.21.3
• 510dfa3 Merge pull request #2894 from github/henrymercer/skip-validating-codeql-sarif
• 492d783 Merge branch 'main' into henrymercer/skip-validating-codeql-sarif
• 83bdf3b Merge pull request #2859 from github/update-supported-enterprise-server-versions
• cffc916 Merge pull request #2891 from austinpray-mixpanel/patch-1
• 4420887 Add deprecation warning for CodeQL 2.16.5 and earlier
• 4e178c5 Update supported versions table in README
• Additional commits viewable in compare view

Updates actions/create-github-app-token from 2.0.2 to 2.0.6

Release notes

Sourced from actions/create-github-app-token's releases.

v2.0.6

2.0.6 (2025-05-03)

Bug Fixes

• replace - with _ (#246) (3336784)

v2.0.5

2.0.5 (2025-05-02)

Bug Fixes

• deps: bump the production-dependencies group with 3 updates (#240) (d64d7d7)

v2.0.4

2.0.4 (2025-05-02)

Bug Fixes

• permission input handling (#243) (2950cbc)

v2.0.3

2.0.3 (2025-05-01)

Bug Fixes

• README: use v2 in examples (#234) (9ba274d), closes #232
• use core.getBooleanInput() to retrieve boolean input values (#223) (c3c17c7)

Commits

• df432ce build(release): 2.0.6 [skip ci]
• 3336784 fix: replace - with _ (#246)
• db3cdf4 build(release): 2.0.5 [skip ci]
• d64d7d7 fix(deps): bump the production-dependencies group with 3 updates (#240)
• 1b6f53e build(deps-dev): bump the development-dependencies group across 1 directory w...
• 061a84d build(deps-dev): bump @​octokit/openapi from 18.2.0 to 19.0.0 (#242)
• c8f34a6 build(deps): bump stefanzweifel/git-auto-commit-action from 5.1.0 to 5.2.0 in...
• 4821f52 build(release): 2.0.4 [skip ci]
• 2950cbc fix: permission input handling (#243)
• 30bf625 build(release): 2.0.3 [skip ci]
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

🦙 MegaLinter status: ⚠️ WARNING

Descriptor	Linter	Files	Fixed	Errors	Warnings	Elapsed time
✅ CPP	clang-format	166	0	0	0	1.3s
✅ CPP	cppcheck	166		0	0	5.87s
✅ DOCKERFILE	hadolint	1		0	0	0.33s
✅ JSON	jsonlint	8		0	0	0.13s
✅ JSON	prettier	8	1	0	0	0.51s
⚠️ MARKDOWN	markdownlint	4	0	2	0	0.65s
⚠️ MARKDOWN	markdown-link-check	4		3	0	5.88s
✅ MARKDOWN	markdown-table-formatter	4	0	0	0	0.21s
✅ REPOSITORY	checkov	yes		no	no	15.97s
✅ REPOSITORY	git_diff	yes		no	no	0.01s
✅ REPOSITORY	grype	yes		no	no	22.58s
✅ REPOSITORY	ls-lint	yes		no	no	0.06s
✅ REPOSITORY	secretlint	yes		no	no	1.09s
✅ REPOSITORY	syft	yes		no	no	1.23s
✅ REPOSITORY	trivy	yes		no	no	5.11s
✅ REPOSITORY	trivy-sbom	yes		no	no	0.08s
✅ REPOSITORY	trufflehog	yes		no	no	2.31s
⚠️ SPELL	lychee	35		3	0	1.4s
✅ YAML	prettier	8	1	0	0	0.53s
✅ YAML	v8r	8		0	0	6.18s
✅ YAML	yamllint	8		0	0	0.42s

See detailed report in MegaLinter reports