ci(deps): bump the actions-org group across 1 directory with 4 updates (#36)

dependabot[bot] · web-flow · commit 98ffed0f1b38 · 2025-09-07T20:41:38.000-03:00
Bumps the actions-org group with 4 updates in the / directory: [actions/github-script](https://github.com/actions/github-script), [actions/upload-pages-artifact](https://github.com/actions/upload-pages-artifact), [actions/setup-go](https://github.com/actions/setup-go) and [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance). Updates `actions/github-script` from 7.0.1 to 8.0.0 - [Release notes](https://github.com/actions/github-script/releases) - [Commits](actions/github-script@v7.0.1...v8) Updates `actions/upload-pages-artifact` from 3.0.1 to 4.0.0 - [Release notes](https://github.com/actions/upload-pages-artifact/releases) - [Commits](actions/upload-pages-artifact@56afc60...7b1f4a7) Updates `actions/setup-go` from 4.1.0 to 6.0.0 - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@93397be...4469467) Updates `actions/attest-build-provenance` from 1.4.3 to 3.0.0 - [Release notes](https://github.com/actions/attest-build-provenance/releases) - [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md) - [Commits](actions/attest-build-provenance@1c608d1...977bb37) --- updated-dependencies: - dependency-name: actions/github-script dependency-version: 8.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-org - dependency-name: actions/upload-pages-artifact dependency-version: 4.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-org - dependency-name: actions/setup-go dependency-version: 6.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-org - dependency-name: actions/attest-build-provenance dependency-version: 3.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-org ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
diff --git a/.github/workflows/docs.yml b/.github/workflows/docs.yml
@@ -357,7 +357,7 @@ jobs:
 
       - name: Upload to GitHub Pages (Node.js ${{ matrix.node-version }})
         if: matrix.node-version == 24 # Only upload from Node.js 24 build
-        uses: actions/upload-pages-artifact@56afc609e74202658d3ffba0e8f6dda462b719fa # v3.1.0
+        uses: actions/upload-pages-artifact@7b1f4a764d45c48632c6b24a0339c27f5614fb0b # v3.1.0
         with:
           path: _site/
 
diff --git a/.github/workflows/license.yml b/.github/workflows/license.yml
@@ -32,7 +32,7 @@ jobs:
           fetch-depth: 0
 
       - name: Setup Go for license tooling
-        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
+        uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
         with:
           go-version: '1.24'
 
diff --git a/.github/workflows/performance.yml b/.github/workflows/performance.yml
@@ -411,7 +411,7 @@ jobs:
         uses: actions/configure-pages@983d7736d9b0ae728b81ab479565c72886d7745b # v5.2.0
 
       - name: Upload performance site to Pages
-        uses: actions/upload-pages-artifact@56afc609e74202658d3ffba0e8f6dda462b719fa # v3.1.0
+        uses: actions/upload-pages-artifact@7b1f4a764d45c48632c6b24a0339c27f5614fb0b # v3.1.0
         with:
           path: _site/
 
diff --git a/.github/workflows/repository-hygiene.yml b/.github/workflows/repository-hygiene.yml
@@ -290,7 +290,7 @@ jobs:
 
       - name: Create hygiene issue if violations found
         if: steps.structure-check.outputs.structure_compliant == 'false'
-        uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1
+        uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8.0.0
         with:
           script: |
             const fs = require('fs');
diff --git a/.github/workflows/sbom.yml b/.github/workflows/sbom.yml
@@ -179,7 +179,7 @@ jobs:
 
       - name: Create SBOM attestation
         if: github.event_name == 'release' || github.ref == 'refs/heads/main'
-        uses: actions/attest-build-provenance@1c608d11d69870c2092266b3f9a6f3abbf17002c # v1.7.12
+        uses: actions/attest-build-provenance@977bb373ede98d70efdf65b84cb5f73e068dcc2a # v1.7.12
         with:
           subject-path: 'sbom-node${{ matrix.node-version }}.json'
 
