Bump grafana/xk6/.github/workflows/extension-release.yml from 1.3.0 to 1.3.3

[dependabot]

Bumps grafana/xk6/.github/workflows/extension-release.yml from 1.3.0 to 1.3.3.

Release notes

Sourced from grafana/xk6/.github/workflows/extension-release.yml's releases.

v1.3.3

Grafana xk6 v1.3.3 is here! 🎉

This is a patch release that addresses security vulnerabilities in dependencies and updates the Docker base image.

Security

• Update gosec to v2.22.11 (#403)

Dependencies

• Update golang.org/x/mod to v0.32.0 (#407)

Docker

• Update Go version to 1.25.5-alpine3.23 in Dockerfiles (#411)

Maintenance

• Update GitHub Actions workflows:
  • Update actions/setup-go digest (#409)
  • Update GitHub artifact actions to v4 (#406)
  • Update oven-sh/setup-bun action to v2.1.0 (#405)
  • Update grafana/shared-workflows/dockerhub-login action to v1.0.3 (#404)
  • Update workflow tooling (#408)

v1.3.2

Grafana xk6 v1.3.2 is here! 🎉

This is a patch release that addresses security vulnerabilities in dependencies.

Security

• #400
  • Update Docker base image to gosec 2.22.11
  • Set go version to v1.25.5 in release workflow

v1.3.1

Grafana xk6 v1.3.1 is here! 🎉

This release enhances the extension validation workflow with k6-based integration testing capabilities.

New Features

Integration Testing in Extension Validation

The extension-validate reusable workflow now supports running k6-based integration tests for extensions (#395). Extension developers can specify test scripts using the new xk6-test-pattern input parameter, and the workflow will automatically execute them using the xk6 test command.

Usage:

... (truncated)

Commits

• 7275fd9 Prepare v1.3.3 release (#413)
• 6a289d7 chore(deps): update dependency securego/gosec to v2.22.11 (#403)
• 58c85aa chore(deps): update actions/setup-go digest to 7a3fe6c (#409)
• c92a0ae fix(deps): update module golang.org/x/mod to v0.32.0 (#407)
• 459455d chore(deps): update workflow tooling (#408)
• bcfc52c chore(deps): update github artifact actions (major) (#406)
• b2f819f chore(deps): update oven-sh/setup-bun action to v2.1.0 (#405)
• df2b6dd chore(deps): update grafana/shared-workflows/dockerhub-login action to v1.0.3...
• de660da chore(deps): update Go version to 1.25.5-alpine3.23 in Dockerfiles (#411)
• 0d1511a chore(deps): update codecov/codecov-action action to v5.5.2 (#402)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #27.