fix(deps): update github-actions (#21)

renovate[bot] · web-flow · commit 2ae84d8a4f2b · 2025-09-02T14:11:43.000+02:00
Co-authored-by: renovate[bot] &lt;29139614+renovate[bot]@users.noreply.github.com&gt;
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
@@ -51,7 +51,7 @@ jobs:
 
             # Initializes the CodeQL tools for scanning.
             - name: "Initialize CodeQL"
-              uses: "github/codeql-action/init@df559355d593797519d70b90fc8edd5db049e7a2" # v3.29.9
+              uses: "github/codeql-action/init@3c3833e0f8c1c83d449a7478aa59c036a9165498" # v3.29.11
               with:
                   languages: "${{ matrix.language }}"
                   # If you wish to specify custom queries, you can do so here or in a config file.
@@ -61,7 +61,7 @@ jobs:
             # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
             # If this step fails, then you should remove it and run the build manually (see below)
             - name: "Autobuild"
-              uses: "github/codeql-action/autobuild@df559355d593797519d70b90fc8edd5db049e7a2" # v3.29.9
+              uses: "github/codeql-action/autobuild@3c3833e0f8c1c83d449a7478aa59c036a9165498" # v3.29.11
 
             # ℹ️ Command-line programs to run using the OS shell.
             # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
@@ -74,6 +74,6 @@ jobs:
             #   ./location_of_script_within_repo/buildscript.sh
 
             - name: "Perform CodeQL Analysis"
-              uses: "github/codeql-action/analyze@df559355d593797519d70b90fc8edd5db049e7a2" # v3.29.9
+              uses: "github/codeql-action/analyze@3c3833e0f8c1c83d449a7478aa59c036a9165498" # v3.29.11
               with:
                   category: "/language:${{matrix.language}}"
diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml
@@ -33,4 +33,4 @@ jobs:
                   EMAIL: "github-actions[bot]@users.noreply.github.com"
 
             - name: "Dependency Review"
-              uses: "actions/dependency-review-action@da24556b548a50705dd671f47852072ea4c105d9" # v4.7.1
+              uses: "actions/dependency-review-action@595b5aeba73380359d98a5e087f648dbb0edce1b" # v4.7.3
diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml
@@ -332,7 +332,7 @@ jobs:
             - name: "Use Node.js 22.x"
               uses: "actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020" # v4.4.0
               with:
-                  node-version: "22.18.0"
+                  node-version: "22.19.0"
                   cache: "pnpm"
 
             - name: "Verify the integrity of provenance attestations and registry signatures for installed dependencies"
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
@@ -73,6 +73,6 @@ jobs:
 
             # Upload the results to GitHub's code scanning dashboard.
             - name: "Upload to code-scanning"
-              uses: "github/codeql-action/upload-sarif@df559355d593797519d70b90fc8edd5db049e7a2" # v3.29.9
+              uses: "github/codeql-action/upload-sarif@3c3833e0f8c1c83d449a7478aa59c036a9165498" # v3.29.11
               with:
                   sarif_file: "results.sarif"
