chore(deps): update reviewdog/action-yamllint action to v1.21.0

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
reviewdog/action-yamllint	action	minor	v1.19.0 → v1.21.0

---

Release Notes

reviewdog/action-yamllint (reviewdog/action-yamllint)

v1.21.0

Compare Source

What's Changed

• chore(deps): update haya14busa/action-depup action to v1.6.4 by @​renovate in #​48
• chore(deps): update peter-evans/create-pull-request action to v7 by @​renovate in #​42
• chore(deps): update reviewdog to 0.20.3 by @​github-actions in #​49

Full Changelog: reviewdog/action-yamllint@v1.20.2...v1.21.0

v1.20.2

Compare Source

What's Changed

• Pin reviewdog install script version with commit SHA by @​haya14busa in #​47

Full Changelog: reviewdog/action-yamllint@v1.20.1...v1.20.2

v1.20.1

Compare Source

What's Changed

• Pin GitHub Actions with commit SHA using pinact by @​haya14busa in #​46

New Contributors

• @​haya14busa made their first contribution in #​46

Full Changelog: reviewdog/action-yamllint@v1.20.0...v1.20.1

v1.20.0

Compare Source

What's Changed

• Add fail_level and deduplicate fail_on_error by @​massongit in #​45

New Contributors

• @​massongit made their first contribution in #​45

Full Changelog: reviewdog/action-yamllint@v1.19.0...v1.20.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[coworker-bot]

upbound/configuration-aws-eks-irsa #36

Change Summary:

• Upgrading the yamllint GitHub Action from version 1.19.0 to 1.20.0 in the CI/CD workflow

Potential Vulnerability:

• File: .github/workflows/yamllint.yaml:10
• Code: uses: reviewdog/action-yamllint@1dca3ad811867be18fbe293a9818d715a6c2cd46 # v1.20.0
• Explanation: While not immediately dangerous, pinning to a specific commit hash without verifying it against the official release tag could potentially introduce malicious code if the repository was compromised. It's recommended to verify the commit hash matches the official v1.20.0 release.

Code Smell:

• File: .github/workflows/yamllint.yaml
• Code: filter_mode: nofilter
• Explanation: Using 'nofilter' mode might generate excessive noise in the PR review by reporting issues in unchanged lines. Consider using 'added' or 'diff_context' to focus on changes.

Debug Log:
No debug logs found in the changes.

Unintended Consequences:

• File: .github/workflows/yamllint.yaml:10
• Code: uses: reviewdog/action-yamllint@1dca3ad811867be18fbe293a9818d715a6c2cd46 # v1.20.0
• Explanation: Version upgrades can introduce new linting rules or change existing ones, potentially causing previously passing YAML files to fail. This could block merging of other PRs until YAML files are updated to comply with new rules.

Risk Score: 3