build(deps): bump google/osv-scanner-action from 2.0.2 to 2.0.3

[dependabot]

Bumps google/osv-scanner-action from 2.0.2 to 2.0.3.

Release notes

Sourced from google/osv-scanner-action's releases.

v2.0.3

Update to use osv-scanner v2.0.3

Notable changes:

• There's now a flag --allow-no-lockfiles you can pass to osv-scanner to avoid getting an error when running against a repo with no lockfiles.
• We no longer ignore general errors when they occur on osv-scanner-action, and will fail the workflow (e.g. invalid flags passed in)

Commits

• 40a8940 Merge pull request #75 from google/update-to-v2.0.3
• ed3a1e5 Update unified workflow example to point to v2.0.3 reusable workflows
• b1e3dfc Update reusable workflows to point to v2.0.3 actions
• 2b64df4 Update actions to use v2.0.3 osv-scanner image
• 3f1460c Merge pull request #72 from renovate-bot/renovate/workflows
• 8cbdeb3 chore(deps): update github/codeql-action action to v3.28.19
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 70.75%. Comparing base (5945430) to head (39299f7).
Report is 3 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #6380      +/-   ##
==========================================
+ Coverage   70.71%   70.75%   +0.03%     
==========================================
  Files         220      220              
  Lines       37092    37092              
==========================================
+ Hits        26229    26243      +14     
+ Misses       9322     9311      -11     
+ Partials     1541     1538       -3     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.