chore(deps): update github-actions

[NetcrackerCLPLCI]

This PR contains the following updates:

Package	Type	Update	Change
netcracker/qubership-core-infra	action	minor	v1.0.9 -> v1.1.1
netcracker/qubership-workflow-hub	action	patch	v1.0.6 -> v1.0.7
super-linter/super-linter	action	minor	v8.1.0 -> v8.2.1

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

netcracker/qubership-core-infra (netcracker/qubership-core-infra)

v1.1.1

Compare Source

v1.1.0

Compare Source

netcracker/qubership-workflow-hub (netcracker/qubership-workflow-hub)

v1.0.7: 1.0.7

Compare Source

🚀 Release

❗Deprecation Warning

The next reusable workflows are deprecated since this version and will be deleted in the next major release:

• create-github-release.yml
• docker-publish.yml
• maven-central-snapshot-deploy-reusable.yaml
• maven-publish.yml
• re-maven-snapshot-deploy.yaml
• tag-creator.yml

The next actions are deprecated since this version and will be deleted in the next major release:

• archive-and-upload-assets
• tag-checker
• commit-and-push
• pom-updater

What's Changed

• (#​394) chore(deps): bump aquasecurity/trivy-action from 0.33.0 to 0.33.1 by @​dependabot[bot]
• (#​393) chore(deps-dev): bump jest from 30.1.3 to 30.2.0 in /actions/container-package-cleanup by @​dependabot[bot]
• (#​373) chore(deps): bump actions/create-github-app-token from 1 to 2 by @​dependabot[bot]
• (#​361) chore(deps): bump IEvangelist/profanity-filter from 2.0.7 to 9.0.6 by @​dependabot[bot]
• (#​362) chore(deps): bump actions/setup-go from 5 to 6 by @​dependabot[bot]
• (#​363) chore(deps): bump actions/setup-node from 4 to 5 by @​dependabot[bot]
• (#​365) chore(deps): bump actions/setup-java from 4 to 5 by @​dependabot[bot]
• (#​364) chore(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by @​dependabot[bot]
• (#​360) chore(deps): bump semver from 7.7.1 to 7.7.2 in /actions/metadata-action by @​dependabot[bot]
• (#​366) chore(deps): bump @​actions/github from 6.0.0 to 6.0.1 in /actions/tag-checker by @​dependabot[bot]
• (#​350) chore(deps): bump netcracker/qubership-workflow-hub from 1.0.1 to 1.0.6 by @​dependabot[bot]
• (#​349) chore(deps): bump github/codeql-action from 3.30.0 to 3.30.3 by @​dependabot[bot]
• (#​347) chore(deps): bump actions/setup-python from 5 to 6 by @​dependabot[bot]
• (#​346) chore(deps): bump actions/download-artifact from 4 to 5 by @​dependabot[bot]
• (#​345) chore(deps): bump actions/checkout from 4 to 5 by @​dependabot[bot]
• (#​358) chore(deps): bump @​actions/github from 6.0.0 to 6.0.1 in /actions/pr-assigner by @​dependabot[bot]
• (#​359) chore(deps): bump @​actions/github from 6.0.0 to 6.0.1 in /actions/container-package-cleanup by @​dependabot[bot]
• (#​356) chore(deps): bump @​actions/github from 6.0.0 to 6.0.1 in /actions/archive-and-upload-assets by @​dependabot[bot]
• (#​354) chore(deps): bump @​actions/github from 6.0.0 to 6.0.1 in /actions/pom-updater by @​dependabot[bot]
• (#​355) chore(deps): bump @​actions/github from 6.0.0 to 6.0.1 in /actions/metadata-action by @​dependabot[bot]
• (#​357) chore(deps): bump fast-xml-parser from 4.5.1 to 5.2.5 in /actions/pom-updater by @​dependabot[bot]
• (#​353) chore(deps-dev): bump jest from 29.7.0 to 30.1.3 in /actions/container-package-cleanup by @​dependabot[bot]
• (#​352) chore(deps): bump @​actions/github from 6.0.0 to 6.0.1 in /actions/custom-event by @​dependabot[bot]
• (#​351) chore(deps): bump the npm_and_yarn group across 7 directories with 5 updates by @​dependabot[bot]

💡 New Features

• (#​395) feat: charts-values-update-action can optionally publish charts to ghcr.io by @​borislavr
• (#​378) fix: Fix artifact download, image refs generation, and context handling in docker-action by @​nookyo
• (#​380) feat: Add on-demand security scan workflow with Grype and Trivy by @​nookyo
• (#​374) feat: update release-drafter.yml by @​borislavr
• (#​370) feat: added warning messages into chart-values-update-action log by @​borislavr

🐞 Bug Fixes

• (#​397) fix: Fix metadata-action runNumber alias resolution bug by @​nookyo
• (#​395) feat: charts-values-update-action can optionally publish charts to ghcr.io by @​borislavr
• (#​378) fix: Fix artifact download, image refs generation, and context handling in docker-action by @​nookyo
• (#​380) feat: Add on-demand security scan workflow with Grype and Trivy by @​nookyo
• (#​376) fix: update findCodeowners function to check specific candidates for CODEOWNERS file by @​nookyo
• (#​368) fix: update action.yaml by @​borislavr

⚙️ Technical Debt

• (#​378) fix: Fix artifact download, image refs generation, and context handling in docker-action by @​nookyo

📝 Documentation

• (#​395) feat: charts-values-update-action can optionally publish charts to ghcr.io by @​borislavr
• (#​378) fix: Fix artifact download, image refs generation, and context handling in docker-action by @​nookyo
• (#​377) docs: update release drafter workflow path in README by @​nookyo

---

Full Changelog: Netcracker/qubership-workflow-hub@v1.0.6...v1.0.7

super-linter/super-linter (super-linter/super-linter)

v8.2.1

Compare Source

🐛 Bugfixes

• biome ignore errors on unmatched files (#​7089) (8d1cfd5)
• handle pull_request_target (#​7088) (188a10f)
• handle schedule and workflow_dispatch events (#​7098) (28cb079), closes #​7095
• set CONFLICT_FOUND as expected (#​7093) (07cfe7e), closes #​7092
• strip workspace from the regex check path (#​7110) (3b72a2d), closes #​7086
• validate DEFAULT_BRANCH when using find (#​7119) (7508f4c), closes #​7117

⬆️ Dependency updates

• docker: bump the docker group with 2 updates (#​7100) (28c5681)
• npm: bump eslint from 9.36.0 to 9.37.0 in /dependencies (#​7102) (cf6cb1e)
• npm: bump renovate from 41.132.2 to 41.136.0 in /dependencies (#​7107) (495692f)
• npm: bump the eslint-plugins-configs group across 1 directory with 2 updates (#​7101) (b3a735d)
• npm: bump the npm group across 1 directory with 4 updates (#​7108) (ce227b3)
• npm: bump typescript (#​7109) (deba11c)
• python: bump the pip group across 1 directory with 7 updates (#​7106) (7c02a56)

🧰 Maintenance

• add missing ruff variables to readme (#​7091) (7daeceb), closes #​7099
• explain who ignores VALIDATE_ALL_CODEBASE (#​7111) (9150eb9), closes #​7090
• github-actions: bump peter-evans/create-issue-from-file (#​7103) (ec80a77)
• update rack to 3.2.3 (#​7136) (2e6ad3d)
• update ruby transitive dependencies (#​7115) (00a71f6)

v8.2.0

Compare Source

🚀 Features

• add kubeconform (#​7011) (415cc32), closes #​6967
• add pre-commit (#​7064) (9106b37), closes #​3683
• export GITHUB_TOKEN (#​7054) (879aeb5), closes #​6970
• run ruff as a formatter (#​6981) (f9bdfcb), closes #​5951
• set zizmor github token variable (#​6971) (097f489)
• support biome (#​7005) (fdf27fe), closes #​6298
• support git worktrees (#​6983) (deb9853), closes #​6944

🐛 Bugfixes

• initialize GITHUB_BEFORE_SHA on merge commits (#​7053) (4649231), closes #​6873
• initialize GITHUB_SHA for both worktrees and regular repos (#​7010) (8477b13)
• install r only when needed (#​7029) (5114ec9), closes #​7022
• set biome working directory (#​7035) (d32a717)

⬆️ Dependency updates

• bundler: bump rubocop in /dependencies in the rubocop group (#​6973) (1e6cd2f)
• bundler: bump rubocop in /dependencies in the rubocop group (#​6999) (0c0b832)
• bundler: bump rubocop-performance (#​7014) (1f7db0b)
• bundler: bump the rubocop group in /dependencies with 2 updates (#​7071) (1680ba2)
• bundler: bump the rubocop group in /dependencies with 3 updates (#​6989) (dee2e4e)
• docker: bump aquasecurity/trivy in the docker group (#​7080) (41480db)
• docker: bump goreleaser/goreleaser in the docker group (#​7070) (c2c988a)
• docker: bump the docker group across 1 directory with 4 updates (#​7031) (a1aae7d)
• docker: bump the docker group with 3 updates (#​6995) (54c24c1)
• docker: bump the docker group with 3 updates (#​7000) (9df4ad9)
• docker: bump the docker group with 3 updates (#​7043) (e2dbaa1)
• docker: bump the docker group with 5 updates (#​6974) (8ea4f49)
• docker: bump the docker group with 8 updates (#​7056) (ccb8ba0)
• java: bump com.puppycrawl.tools:checkstyle (#​6991) (6fc26f0)
• java: bump com.puppycrawl.tools:checkstyle (#​7072) (96c0ec9)
• npm: bump @​babel/eslint-parser in /dependencies (#​7017) (c0393aa)
• npm: bump @​typescript-eslint/eslint-plugin (#​6992) (d37840f)
• npm: bump @​typescript-eslint/eslint-plugin (#​7003) (6d3fb85)
• npm: bump @​typescript-eslint/eslint-plugin (#​7023) (a974afd)
• npm: bump @​typescript-eslint/eslint-plugin (#​7059) (dc633f9)
• npm: bump @​typescript-eslint/eslint-plugin (#​7074) (ecf5001)
• npm: bump @​typescript-eslint/eslint-plugin (#​7081) (7412580)
• npm: bump axios (#​7040) (407092f)
• npm: bump eslint from 9.33.0 to 9.34.0 in /dependencies (#​6977) (0480c3e)
• npm: bump eslint from 9.34.0 to 9.35.0 in /dependencies (#​7016) (aa8b43f)
• npm: bump eslint from 9.35.0 to 9.36.0 in /dependencies (#​7061) (3077915)
• npm: bump eslint-plugin-n (#​7046) (18787aa)
• npm: bump htmlhint from 1.6.3 to 1.7.0 in /dependencies (#​7045) (808542e)
• npm: bump htmlhint from 1.7.0 to 1.7.1 in /dependencies (#​7062) (0592f61)
• npm: bump next (#​6990) (afc246b)
• npm: bump react-router-dom (#​6975) (dc353b6)
• npm: bump react-router-dom (#​7048) (ba436ab)
• npm: bump react-router-dom (#​7069) (9c98974)
• npm: bump renovate from 41.114.0 to 41.123.0 in /dependencies (#​7060) (1ccb602)
• npm: bump renovate from 41.123.0 to 41.131.12 in /dependencies (#​7075) (725fe03)
• npm: bump renovate from 41.131.12 to 41.132.2 in /dependencies (#​7082) (d42850b)
• npm: bump renovate from 41.81.5 to 41.83.1 in /dependencies (#​6978) (b9a2b77)
• npm: bump renovate from 41.86.1 to 41.92.0 in /dependencies (#​6994) (2bf83e4)
• npm: bump renovate from 41.92.0 to 41.96.2 in /dependencies (#​7001) (e81e1ef)
• npm: bump renovate from 41.96.2 to 41.97.10 in /dependencies (#​7018) (b850925)
• npm: bump renovate from 41.98.1 to 41.99.7 in /dependencies (#​7032) (49f224f)
• npm: bump renovate from 41.99.7 to 41.113.7 in /dependencies (#​7044) (6d78b52)
• npm: bump tar-fs (#​7066) (7941ea8)
• npm: bump the eslint-plugins-configs group across 1 directory with 2 updates (#​7058) (77f4c91)
• npm: bump the npm group across 1 directory with 2 updates (#​7047) (9cde340)
• npm: bump the npm group across 1 directory with 3 updates (#​7034) (5cb82c0)
• npm: bump the npm group across 1 directory with 5 updates (#​7077) (98635c9)
• python: bump the pip group across 1 directory with 2 updates (#​6976) (db91c76)
• python: bump the pip group across 1 directory with 2 updates (#​7019) (1515dc8)
• python: bump the pip group across 1 directory with 2 updates (#​7079) (8c221da)
• python: bump the pip group across 1 directory with 3 updates (#​6993) (7987cfe)
• python: bump the pip group across 1 directory with 3 updates (#​7057) (91f7aaf)
• python: bump the pip group across 1 directory with 3 updates (#​7078) (92f78b7)
• python: bump the pip group across 1 directory with 4 updates (#​7042) (e284708)

🧰 Maintenance

• add and refactor development guide (#​6985) (5e61a2e)
• add git worktrees section to local run documentation (#​6984) (633b53a)
• check for errors on github event functions (#​7055) (274fcd6)
• clarify default configuration files (#​7033) (7272759), closes #​7008
• dev-docker: bump node in /dev-dependencies (#​6988) (7a05695)
• dev-docker: bump node in /dev-dependencies (#​7041) (e5020df)
• dev-docker: bump node in /dev-dependencies (#​7073) (35ce250)
• github-actions: bump actions/github-script in the dev-ci-tools group (#​7012) (fdb4fb1)
• github-actions: bump actions/stale in the dev-ci-tools group (#​7002) (5e7453d)
• github-actions: bump docker/login-action in the dev-ci-tools group (#​7076) (3ec8ffb)
• install new docker vs code extensions (#​6969) (0768adf)
• set persist-credentials in readme example (#​7026) (c54ecba)
• simplify dependabot config and extend docs (#​6998) (1fa37ee)
• simplify more tests (#​7006) (e933646)
• simplify more tests (#​7025) (3bd0e1d)
• simplify more tests (#​7028) (2624757)
• simplify more tests (#​7063) (96daff4)
• simplify tests (#​7004) (80e59bb)
• update .sqlfluff config link (#​7039) (b408793), closes #​7036
• upgrade actions/checkout from v4 to v5 and fix some typos (#​6996) (348aa96)
• use gitleaks directory command (#​6997) (18d7882)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.