chore(deps): update github-actions

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
actions/download-artifact	action	patch	v4.1.7 -> v4.1.8
actions/upload-artifact	action	patch	v4.3.3 -> v4.3.4
docker/build-push-action	action	digest	31159d4 -> 1a16264
docker/setup-buildx-action	action	digest	d70bba7 -> 4fd8129
github/codeql-action	action	patch	v3.25.10 -> v3.25.11

---

Release Notes

actions/download-artifact (actions/download-artifact)

v4.1.8

Compare Source

What's Changed

• Update @​actions/artifact version, bump dependencies by @​robherley in https://github.com/actions/download-artifact/pull/341

Full Changelog: actions/download-artifact@v4...v4.1.8

actions/upload-artifact (actions/upload-artifact)

v4.3.4

Compare Source

What's Changed

• Update @​actions/artifact version, bump dependencies by @​robherley in https://github.com/actions/upload-artifact/pull/584

Full Changelog: actions/upload-artifact@v4.3.3...v4.3.4

github/codeql-action (github/codeql-action)

v3.25.11

Compare Source

---

Configuration

📅 Schedule: Branch creation - "before 4am on the first day of the month" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[github-actions]

🦙 MegaLinter status: ✅ SUCCESS

Descriptor	Linter	Files	Fixed	Errors	Elapsed time
✅ ACTION	actionlint	7		0	0.08s
✅ COPYPASTE	jscpd	yes		no	1.15s
✅ DOCKERFILE	hadolint	1		0	0.06s
✅ JSON	jsonlint	3		0	0.18s
✅ JSON	prettier	3		0	0.4s
✅ JSON	v8r	3		0	3.39s
✅ PYTHON	bandit	1		0	0.94s
✅ PYTHON	black	1		0	0.61s
✅ PYTHON	flake8	1		0	0.4s
✅ PYTHON	isort	1		0	0.25s
✅ PYTHON	mypy	1		0	1.94s
✅ PYTHON	pylint	1		0	1.55s
✅ PYTHON	pyright	1		0	6.02s
✅ PYTHON	ruff	1		0	0.06s
✅ REPOSITORY	checkov	yes		no	12.02s
✅ REPOSITORY	devskim	yes		no	1.67s
✅ REPOSITORY	dustilock	yes		no	0.0s
✅ REPOSITORY	gitleaks	yes		no	0.09s
✅ REPOSITORY	git_diff	yes		no	0.03s
✅ REPOSITORY	grype	yes		no	13.32s
✅ REPOSITORY	kics	yes		no	3.74s
✅ REPOSITORY	secretlint	yes		no	0.73s
✅ REPOSITORY	syft	yes		no	0.38s
✅ REPOSITORY	trivy	yes		no	6.47s
✅ REPOSITORY	trivy-sbom	yes		no	4.59s
✅ REPOSITORY	trufflehog	yes		no	3.36s
✅ YAML	prettier	9		0	1.0s
✅ YAML	v8r	9		0	8.77s
✅ YAML	yamllint	9		0	0.48s

See detailed report in MegaLinter reports

You could have same capabilities but better runtime performances if you request a new MegaLinter flavor.

• Click here to request the new flavor

MegaLinter is graciously provided by

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

[github-actions]

Trivy image scan report

ghcr.io/miracum/github-reusable-workflow:pr-67 (debian 12.5)

27 known vulnerabilities found (CRITICAL: 0 HIGH: 9 MEDIUM: 18 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
libgssapi-krb5-2	CVE-2024-37370	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libgssapi-krb5-2	CVE-2024-37371	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libk5crypto3	CVE-2024-37370	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libk5crypto3	CVE-2024-37371	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libkrb5-3	CVE-2024-37370	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libkrb5-3	CVE-2024-37371	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libkrb5support0	CVE-2024-37370	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libkrb5support0	CVE-2024-37371	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libpython3.11-minimal	CVE-2023-24329	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-minimal	CVE-2023-41105	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-minimal	CVE-2023-6597	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-minimal	CVE-2023-40217	MEDIUM	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-minimal	CVE-2024-0450	MEDIUM	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-stdlib	CVE-2023-24329	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-stdlib	CVE-2023-41105	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-stdlib	CVE-2023-6597	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-stdlib	CVE-2023-40217	MEDIUM	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-stdlib	CVE-2024-0450	MEDIUM	3.11.2-6	3.11.2-6+deb12u2
libssl3	CVE-2023-5678	MEDIUM	3.0.11-1~deb12u2	3.0.13-1~deb12u1
libssl3	CVE-2023-6129	MEDIUM	3.0.11-1~deb12u2	3.0.13-1~deb12u1
libssl3	CVE-2023-6237	MEDIUM	3.0.11-1~deb12u2	3.0.13-1~deb12u1
libssl3	CVE-2024-0727	MEDIUM	3.0.11-1~deb12u2	3.0.13-1~deb12u1
python3.11-minimal	CVE-2023-24329	HIGH	3.11.2-6	3.11.2-6+deb12u2
python3.11-minimal	CVE-2023-41105	HIGH	3.11.2-6	3.11.2-6+deb12u2
python3.11-minimal	CVE-2023-6597	HIGH	3.11.2-6	3.11.2-6+deb12u2
python3.11-minimal	CVE-2023-40217	MEDIUM	3.11.2-6	3.11.2-6+deb12u2
python3.11-minimal	CVE-2024-0450	MEDIUM	3.11.2-6	3.11.2-6+deb12u2

No Misconfigurations found

[github-actions]

Trivy image scan report

ghcr.io/miracum/github-reusable-workflow-without-test-image:pr-67 (debian 12.5)

27 known vulnerabilities found (CRITICAL: 0 HIGH: 9 MEDIUM: 18 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
libgssapi-krb5-2	CVE-2024-37370	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libgssapi-krb5-2	CVE-2024-37371	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libk5crypto3	CVE-2024-37370	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libk5crypto3	CVE-2024-37371	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libkrb5-3	CVE-2024-37370	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libkrb5-3	CVE-2024-37371	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libkrb5support0	CVE-2024-37370	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libkrb5support0	CVE-2024-37371	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libpython3.11-minimal	CVE-2023-24329	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-minimal	CVE-2023-41105	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-minimal	CVE-2023-6597	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-minimal	CVE-2023-40217	MEDIUM	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-minimal	CVE-2024-0450	MEDIUM	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-stdlib	CVE-2023-24329	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-stdlib	CVE-2023-41105	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-stdlib	CVE-2023-6597	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-stdlib	CVE-2023-40217	MEDIUM	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-stdlib	CVE-2024-0450	MEDIUM	3.11.2-6	3.11.2-6+deb12u2
libssl3	CVE-2023-5678	MEDIUM	3.0.11-1~deb12u2	3.0.13-1~deb12u1
libssl3	CVE-2023-6129	MEDIUM	3.0.11-1~deb12u2	3.0.13-1~deb12u1
libssl3	CVE-2023-6237	MEDIUM	3.0.11-1~deb12u2	3.0.13-1~deb12u1
libssl3	CVE-2024-0727	MEDIUM	3.0.11-1~deb12u2	3.0.13-1~deb12u1
python3.11-minimal	CVE-2023-24329	HIGH	3.11.2-6	3.11.2-6+deb12u2
python3.11-minimal	CVE-2023-41105	HIGH	3.11.2-6	3.11.2-6+deb12u2
python3.11-minimal	CVE-2023-6597	HIGH	3.11.2-6	3.11.2-6+deb12u2
python3.11-minimal	CVE-2023-40217	MEDIUM	3.11.2-6	3.11.2-6+deb12u2
python3.11-minimal	CVE-2024-0450	MEDIUM	3.11.2-6	3.11.2-6+deb12u2

No Misconfigurations found

[github-actions]

Trivy image scan report

ghcr.io/miracum/github-reusable-workflow-without-test-image:v1.2.3-beta.123 (debian 12.5)

27 known vulnerabilities found (HIGH: 9 MEDIUM: 18 LOW: 0 CRITICAL: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
libgssapi-krb5-2	CVE-2024-37370	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libgssapi-krb5-2	CVE-2024-37371	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libk5crypto3	CVE-2024-37370	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libk5crypto3	CVE-2024-37371	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libkrb5-3	CVE-2024-37370	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libkrb5-3	CVE-2024-37371	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libkrb5support0	CVE-2024-37370	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libkrb5support0	CVE-2024-37371	MEDIUM	1.20.1-2+deb12u1	1.20.1-2+deb12u2
libpython3.11-minimal	CVE-2023-24329	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-minimal	CVE-2023-41105	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-minimal	CVE-2023-6597	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-minimal	CVE-2023-40217	MEDIUM	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-minimal	CVE-2024-0450	MEDIUM	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-stdlib	CVE-2023-24329	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-stdlib	CVE-2023-41105	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-stdlib	CVE-2023-6597	HIGH	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-stdlib	CVE-2023-40217	MEDIUM	3.11.2-6	3.11.2-6+deb12u2
libpython3.11-stdlib	CVE-2024-0450	MEDIUM	3.11.2-6	3.11.2-6+deb12u2
libssl3	CVE-2023-5678	MEDIUM	3.0.11-1~deb12u2	3.0.13-1~deb12u1
libssl3	CVE-2023-6129	MEDIUM	3.0.11-1~deb12u2	3.0.13-1~deb12u1
libssl3	CVE-2023-6237	MEDIUM	3.0.11-1~deb12u2	3.0.13-1~deb12u1
libssl3	CVE-2024-0727	MEDIUM	3.0.11-1~deb12u2	3.0.13-1~deb12u1
python3.11-minimal	CVE-2023-24329	HIGH	3.11.2-6	3.11.2-6+deb12u2
python3.11-minimal	CVE-2023-41105	HIGH	3.11.2-6	3.11.2-6+deb12u2
python3.11-minimal	CVE-2023-6597	HIGH	3.11.2-6	3.11.2-6+deb12u2
python3.11-minimal	CVE-2023-40217	MEDIUM	3.11.2-6	3.11.2-6+deb12u2
python3.11-minimal	CVE-2024-0450	MEDIUM	3.11.2-6	3.11.2-6+deb12u2

No Misconfigurations found

[github-actions]

🎉 This issue has been resolved in version 1.10.3 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀