Update to Node 24

Author: ffried

.github/FUNDING.yml

@@ -0,0 +1 @@
+github: [sersoft-gmbh, ffried]

.github/actions/generate-action-code/action.yml

@@ -6,9 +6,9 @@ runs:
   steps:
     - uses: actions/setup-node@v6
       with:
-        node-version: 20
+        node-version: 24
         check-latest: true
-        cache: 'npm'
+        cache: npm
     - name: Generate action code
       shell: bash
       run: |

.github/dependabot.yml

@@ -8,29 +8,19 @@ updates:
       interval: "daily"
       time: "07:00"
       timezone: "Europe/Berlin"
-    assignees:
-      - ffried
-    reviewers:
-      - ffried
+
   - package-ecosystem: "github-actions"
     directory: ".github/actions/generate-action-code"
     open-pull-requests-limit: 10
     schedule:
       interval: "daily"
       time: "07:00"
       timezone: "Europe/Berlin"
-    assignees:
-      - ffried
-    reviewers:
-      - ffried
+
   - package-ecosystem: "npm"
     directory: "/"
     open-pull-requests-limit: 10
     schedule:
       interval: "daily"
       time: "07:00"
       timezone: "Europe/Berlin"
-    assignees:
-      - ffried
-    reviewers:
-      - ffried

.github/workflows/codeql-analysis.yml

@@ -0,0 +1,22 @@
+name: CodeQL
+
+on:
+  push:
+    branches: [ main ]
+  pull_request:
+    branches: [ main ]
+  schedule:
+    - cron: "41 7 * * 2"
+
+permissions:
+  # required for all workflows
+  security-events: write
+  # required to fetch internal or private CodeQL packs
+  packages: read
+  # only required for workflows in private repositories
+  actions: read
+  contents: read
+
+jobs:
+  analyze:
+    uses: sersoft-gmbh/oss-common-actions/.github/workflows/codeql-ts-gh-action.yml@main

.github/workflows/codeql.yml

@@ -5,6 +5,9 @@ on:
     branches: [ main ]
     paths-ignore: [ 'dist/*.js' ]
 
+permissions:
+  contents: write
+
 jobs:
   deploy-action-code:
     name: Deploy Action Code

.github/workflows/deploy.yml

@@ -15,4 +15,4 @@ jobs:
         run: gh pr merge --auto --rebase "${PR_URL}"
         env:
           PR_URL: ${{ github.event.pull_request.html_url }}
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}

.github/workflows/enable-auto-merge.yml

@@ -4,14 +4,16 @@ on:
   release:
     types: [ published ]
 
+permissions:
+  contents: write
+
 jobs:
   update-tags:
+    if: ${{ !github.event.release.prerelease }}
     name: Update Running Releases
     runs-on: ubuntu-latest
-    if: ${{ github.event.release.prerelease == false }}
     steps:
       - uses: actions/checkout@v5
-      - uses: sersoft-gmbh/running-release-tags-action@v3
+      - uses: sersoft-gmbh/running-release-tags-action@v4
         with:
-          update-full-release: true
           github-token: ${{ secrets.GITHUB_TOKEN }}

.github/workflows/tag-update.yml

@@ -9,19 +9,23 @@ on:
   pull_request:
     branches: [ main ]
 
+permissions:
+  contents: read
+  pull-requests: read
+
 jobs:
   test-defaults:
     name: Test Default Inputs
     strategy:
       matrix:
-        os: [ macos-14, ubuntu-latest ]
+        os: [ macos-26, ubuntu-latest ]
     runs-on: ${{ matrix.os }}
-    container: ${{ matrix.os == 'ubuntu-latest' && 'swift:5.9' || '' }}
+    container: ${{ matrix.os == 'ubuntu-latest' && 'swift:6.2' || '' }}
     steps:
       - uses: maxim-lobanov/setup-xcode@v1
         if: ${{ runner.os == 'macOS' }}
         with:
-          xcode-version: ^15.0
+          xcode-version: ^26.0
       - uses: actions/checkout@v5
       - name: Generate action code
         if: ${{ github.event_name == 'pull_request' }}
@@ -51,7 +55,7 @@ jobs:
     name: Test Customized Inputs
     strategy:
       matrix:
-        os: [ macos-14, ubuntu-latest ]
+        os: [ macos-26, ubuntu-latest ]
         cov-format: [ 'txt', 'lcov' ]
     env:
       INPUT_DERIVED_DATA: .derived-data
@@ -61,12 +65,12 @@ jobs:
       INPUT_TARGET_NAME_FILTER: TestProject(1|Package).*
       INPUT_OUTPUT_FOLDER: .swiftcov-test
     runs-on: ${{ matrix.os }}
-    container: ${{ matrix.os == 'ubuntu-latest' && 'swift:5.9' || '' }}
+    container: ${{ matrix.os == 'ubuntu-latest' && 'swift:6.2' || '' }}
     steps:
       - uses: maxim-lobanov/setup-xcode@v1
         if: ${{ runner.os == 'macOS' }}
         with:
-          xcode-version: ^15.0
+          xcode-version: ^26.0
       - uses: actions/checkout@v5
       - name: Generate action code
         if: ${{ github.event_name == 'pull_request' }}

.github/workflows/tests.yml

@@ -2,7 +2,7 @@
 
 [![Tests](https://github.com/sersoft-gmbh/swift-coverage-action/actions/workflows/tests.yml/badge.svg)](https://github.com/sersoft-gmbh/swift-coverage-action/actions/workflows/tests.yml)
 
-This action converts code coverage files from `swift test` or `xcodebuild` runs for processing with e.g. codecov.
+This action converts code coverage files from `swift test` or `xcodebuild` runs for processing with for example codecov.
 Note that this action does not run any test. Use `swift test`, `xcodebuild` or [xcodebuild-action](https://github.com/sersoft-gmbh/xcodebuild-action) for that.
 
 ## Inputs
@@ -49,7 +49,7 @@ Default: `'false'`
 
 ### `files`
 
-The JSON encoded array of (absolute) file paths that were written. They are all contained inside the directory specified in the `output` input.
+The (JSON encoded) array of (absolute) file paths that were written. They are all contained inside the directory specified in the `output` input.
 
 ## Example Usage
 
@@ -60,9 +60,9 @@ uses: sersoft-gmbh/swift-coverage-action@v4
 
 ### Codecov Action (v2 or later)
 
-To use this action together with [codecov/codecov-action](https://github.com/codecov/codecov-action), you need to convert the output to a comma separated string:
+To use this action together with [codecov/codecov-action](https://github.com/codecov/codecov-action), you need to convert the output to a comma-separated string:
 ```yaml
-- uses: sersoft-gmbh/swift-coverage-action@v4
+- uses: sersoft-gmbh/swift-coverage-action@v5
   id: coverage-files
 - uses: codecov/codecov-action@v3
   with: