From fe45ca116998b62cbead4fc5fc1dee6bab075fee Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 20 Apr 2026 09:43:21 +0000
Subject: [PATCH] chore(deps): bump the github-actions group with 4 updates

Bumps the github-actions group with 4 updates: [github/codeql-action](https://github.com/github/codeql-action), [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv), [actions/setup-node](https://github.com/actions/setup-node) and [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata).


Updates `github/codeql-action` from 4.35.1 to 4.35.2
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v4.35.1...95e58e9a2cdfd71adc6e0353d5c52f41a045d225)

Updates `astral-sh/setup-uv` from 8.0.0 to 8.1.0
- [Release notes](https://github.com/astral-sh/setup-uv/releases)
- [Commits](https://github.com/astral-sh/setup-uv/compare/cec208311dfd045dd5311c1add060b2062131d57...08807647e7069bb48b6ef5acd8ec9567f424441b)

Updates `actions/setup-node` from 6.3.0 to 6.4.0
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/53b83947a5a98c8d113130e565377fae1a50d02f...48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e)

Updates `dependabot/fetch-metadata` from 3.0.0 to 3.1.0
- [Release notes](https://github.com/dependabot/fetch-metadata/releases)
- [Commits](https://github.com/dependabot/fetch-metadata/compare/ffa630c65fa7e0ecfa0625b5ceda64399aea1b36...25dd0e34f4fe68f24cc83900b1fe3fe149efef98)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.35.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: astral-sh/setup-uv
  dependency-version: 8.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: actions/setup-node
  dependency-version: 6.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: dependabot/fetch-metadata
  dependency-version: 3.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/check-binary-integrity.yml     | 2 +-
 .github/workflows/dataviewer-backend-pytests.yml | 2 +-
 .github/workflows/dataviewer-frontend-tests.yml  | 2 +-
 .github/workflows/dependabot-security-prefix.yml | 2 +-
 .github/workflows/deploy-docs.yml                | 2 +-
 .github/workflows/docusaurus-tests.yml           | 2 +-
 .github/workflows/fuzz-regression-tests.yml      | 2 +-
 .github/workflows/main.yml                       | 2 +-
 .github/workflows/pytest-tests.yml               | 2 +-
 .github/workflows/python-lint.yml                | 2 +-
 .github/workflows/validate-config-schema.yml     | 2 +-
 11 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/.github/workflows/check-binary-integrity.yml b/.github/workflows/check-binary-integrity.yml
index 48a2689f..26f70da2 100644
--- a/.github/workflows/check-binary-integrity.yml
+++ b/.github/workflows/check-binary-integrity.yml
@@ -33,7 +33,7 @@ jobs:
 
       - name: Upload SARIF to Security tab
         if: always()
-        uses: github/codeql-action/upload-sarif@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
+        uses: github/codeql-action/upload-sarif@95e58e9a2cdfd71adc6e0353d5c52f41a045d225 # v4.35.2
         with:
           sarif_file: binary-freshness-results.sarif
           category: binary-freshness
diff --git a/.github/workflows/dataviewer-backend-pytests.yml b/.github/workflows/dataviewer-backend-pytests.yml
index 0496d226..da0e5045 100644
--- a/.github/workflows/dataviewer-backend-pytests.yml
+++ b/.github/workflows/dataviewer-backend-pytests.yml
@@ -34,7 +34,7 @@ jobs:
           python-version: '3.11'
 
       - name: Setup uv
-        uses: astral-sh/setup-uv@cec208311dfd045dd5311c1add060b2062131d57 # v8.0.0
+        uses: astral-sh/setup-uv@08807647e7069bb48b6ef5acd8ec9567f424441b # v8.1.0
 
       - name: Install system dependencies
         run: sudo apt-get update && sudo apt-get install -y --no-install-recommends ffmpeg
diff --git a/.github/workflows/dataviewer-frontend-tests.yml b/.github/workflows/dataviewer-frontend-tests.yml
index 36d66adb..0b552295 100644
--- a/.github/workflows/dataviewer-frontend-tests.yml
+++ b/.github/workflows/dataviewer-frontend-tests.yml
@@ -29,7 +29,7 @@ jobs:
           persist-credentials: false
 
       - name: Setup Node.js
-        uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f  # v6.3.0
+        uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e  # v6.4.0
         with:
           node-version-file: data-management/viewer/frontend/.nvmrc
           cache: npm
diff --git a/.github/workflows/dependabot-security-prefix.yml b/.github/workflows/dependabot-security-prefix.yml
index 715fdfbf..f819001c 100644
--- a/.github/workflows/dependabot-security-prefix.yml
+++ b/.github/workflows/dependabot-security-prefix.yml
@@ -21,7 +21,7 @@ jobs:
     steps:
       - name: Fetch Dependabot metadata
         id: metadata
-        uses: dependabot/fetch-metadata@ffa630c65fa7e0ecfa0625b5ceda64399aea1b36 # v3.0.0
+        uses: dependabot/fetch-metadata@25dd0e34f4fe68f24cc83900b1fe3fe149efef98 # v3.1.0
         with:
           github-token: "${{ secrets.GITHUB_TOKEN }}"
 
diff --git a/.github/workflows/deploy-docs.yml b/.github/workflows/deploy-docs.yml
index 01b6a387..1a7d21bd 100644
--- a/.github/workflows/deploy-docs.yml
+++ b/.github/workflows/deploy-docs.yml
@@ -44,7 +44,7 @@ jobs:
           fetch-depth: 0
 
       - name: Setup Node.js
-        uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
+        uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
         with:
           node-version: '24.14.1'
           cache: npm
diff --git a/.github/workflows/docusaurus-tests.yml b/.github/workflows/docusaurus-tests.yml
index 7e93b30b..0f4b07cd 100644
--- a/.github/workflows/docusaurus-tests.yml
+++ b/.github/workflows/docusaurus-tests.yml
@@ -25,7 +25,7 @@ jobs:
           persist-credentials: false
 
       - name: Setup Node.js
-        uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
+        uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
         with:
           node-version: '24.14.1'
           cache: npm
diff --git a/.github/workflows/fuzz-regression-tests.yml b/.github/workflows/fuzz-regression-tests.yml
index 01cd8925..5bf83f26 100644
--- a/.github/workflows/fuzz-regression-tests.yml
+++ b/.github/workflows/fuzz-regression-tests.yml
@@ -31,7 +31,7 @@ jobs:
           python-version: '3.11'
 
       - name: Setup uv
-        uses: astral-sh/setup-uv@cec208311dfd045dd5311c1add060b2062131d57  # v8.0.0
+        uses: astral-sh/setup-uv@08807647e7069bb48b6ef5acd8ec9567f424441b  # v8.1.0
 
       - name: Install dependencies
         run: uv sync --group dev
diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 48645aa9..a7f406d2 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -290,7 +290,7 @@ jobs:
 
       - name: Setup uv
         if: ${{ steps.release.outputs.prs_created == 'true' }}
-        uses: astral-sh/setup-uv@cec208311dfd045dd5311c1add060b2062131d57  # v8.0.0
+        uses: astral-sh/setup-uv@08807647e7069bb48b6ef5acd8ec9567f424441b  # v8.1.0
 
       - name: Regenerate uv.lock
         if: ${{ steps.release.outputs.prs_created == 'true' }}
diff --git a/.github/workflows/pytest-tests.yml b/.github/workflows/pytest-tests.yml
index c60a53ed..ccca422d 100644
--- a/.github/workflows/pytest-tests.yml
+++ b/.github/workflows/pytest-tests.yml
@@ -31,7 +31,7 @@ jobs:
           python-version: '3.11'
 
       - name: Setup uv
-        uses: astral-sh/setup-uv@cec208311dfd045dd5311c1add060b2062131d57  # v8.0.0
+        uses: astral-sh/setup-uv@08807647e7069bb48b6ef5acd8ec9567f424441b  # v8.1.0
 
       - name: Install dependencies
         run: uv sync --group dev
diff --git a/.github/workflows/python-lint.yml b/.github/workflows/python-lint.yml
index d494814b..a5174c04 100644
--- a/.github/workflows/python-lint.yml
+++ b/.github/workflows/python-lint.yml
@@ -29,7 +29,7 @@ jobs:
           persist-credentials: false
 
       - name: Setup uv
-        uses: astral-sh/setup-uv@cec208311dfd045dd5311c1add060b2062131d57  # v8.0.0
+        uses: astral-sh/setup-uv@08807647e7069bb48b6ef5acd8ec9567f424441b  # v8.1.0
 
       - name: Ruff lint check
         id: ruff-check
diff --git a/.github/workflows/validate-config-schema.yml b/.github/workflows/validate-config-schema.yml
index 6866b814..5e81a431 100644
--- a/.github/workflows/validate-config-schema.yml
+++ b/.github/workflows/validate-config-schema.yml
@@ -32,7 +32,7 @@ jobs:
           python-version: '3.11'
 
       - name: Setup uv
-        uses: astral-sh/setup-uv@cec208311dfd045dd5311c1add060b2062131d57  # v8.0.0
+        uses: astral-sh/setup-uv@08807647e7069bb48b6ef5acd8ec9567f424441b  # v8.1.0
 
       - name: Install dependencies
         run: uv pip install --system "pydantic==2.12.5"