chore(deps): update github actions (main)

[oep-renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Type	Update	Change
actions/checkout	action	patch	v6.0.1 → v6.0.2
actions/checkout	action	patch	v6.0.0 → v6.0.2
actions/setup-go	action	minor	v6.1.0 → v6.2.0
actions/setup-java (changelog)	action	digest	f2beeb2 → be666c2
actions/setup-node	action	minor	v6.1.0 → v6.2.0
astral-sh/setup-uv	action	minor	v7.1.6 → v7.3.0
debian	container	digest	e899040 → 98f4b71
docker/login-action	action	minor	v3.6.0 → v3.7.0
github/codeql-action	action	minor	v4.31.8 → v4.32.4
open-edge-platform/geti-ci	action	digest	ec25852 → 375de2e
renovatebot/github-action	action	major	v44.2.0 → v46.1.2
step-security/harden-runner	action	patch	v2.14.0 → v2.14.2
tj-actions/changed-files	action	patch	v47.0.1 → v47.0.4

---

Release Notes

actions/checkout (actions/checkout)

v6.0.2

Compare Source

• Fix tag handling: preserve annotations and explicit fetch-tags by @​ericsciple in #​2356

actions/setup-go (actions/setup-go)

v6.2.0

Compare Source

What's Changed

Enhancements

• Example for restore-only cache in documentation by @​aparnajyothi-y in #​696
• Update Node.js version in action.yml by @​ccoVeille in #​691
• Documentation update of actions/checkout by @​deining in #​683

Dependency updates

• Upgrade js-yaml from 3.14.1 to 3.14.2 by @​dependabot in #​682
• Upgrade @​actions/cache to v5 by @​salmanmkc in #​695
• Upgrade actions/checkout from 5 to 6 by @​dependabot in #​686
• Upgrade qs from 6.14.0 to 6.14.1 by @​dependabot in #​703

New Contributors

• @​ccoVeille made their first contribution in #​691
• @​deining made their first contribution in #​683

Full Changelog: actions/setup-go@v6...v6.2.0

actions/setup-node (actions/setup-node)

v6.2.0

Compare Source

What's Changed

Documentation

• Documentation update related to absence of Lockfile by @​mahabaleshwars in #​1454
• Correct mirror option typos by @​MikeMcC399 in #​1442
• Readme update on checkout version v6 by @​deining in #​1446
• Readme typo fixes @​munyari in #​1226
• Advanced document update on checkout version v6 by @​aparnajyothi-y in #​1468

Dependency updates:

• Upgrade @​actions/cache to v5.0.1 by @​salmanmkc in #​1449

New Contributors

• @​mahabaleshwars made their first contribution in #​1454
• @​MikeMcC399 made their first contribution in #​1442
• @​deining made their first contribution in #​1446
• @​munyari made their first contribution in #​1226

Full Changelog: actions/setup-node@v6...v6.2.0

astral-sh/setup-uv (astral-sh/setup-uv)

v7.3.0: 🌈 New features and bug fixes for activate-environment

Compare Source

Changes

This release contains a few bug fixes and a new feature for the activate-environment functionality.

🐛 Bug fixes

• fix: warn instead of error when no python to cache @​eifinger (#​762)
• fix: use --clear to create venv @​eifinger (#​761)

🚀 Enhancements

• feat: add venv-path input for activate-environment @​eifinger (#​746)

🧰 Maintenance

• chore: update known checksums for 0.10.0 @​github-actions[bot] (#​759)
• refactor: tilde-expansion tests as unittests and no self-hosted tests @​eifinger (#​760)
• chore: update known checksums for 0.9.30 @​github-actions[bot] (#​756)
• chore: update known checksums for 0.9.29 @​github-actions[bot] (#​748)

📚 Documentation

• Fix punctuation @​pm-dev563 (#​747)

⬆️ Dependency updates

• Bump typesafegithub/github-actions-typing from 2.2.1 to 2.2.2 @​dependabot[bot] (#​753)
• Bump peter-evans/create-pull-request from 8.0.0 to 8.1.0 @​dependabot[bot] (#​751)
• Bump actions/checkout from 6.0.1 to 6.0.2 @​dependabot[bot] (#​740)
• Bump release-drafter/release-drafter from 6.1.0 to 6.2.0 @​dependabot[bot] (#​743)
• Bump eifinger/actionlint-action from 1.9.3 to 1.10.0 @​dependabot[bot] (#​731)
• Bump actions/setup-node from 6.1.0 to 6.2.0 @​dependabot[bot] (#​738)

v7.2.1: 🌈 update known checksums up to 0.9.28

Compare Source

Changes

🧰 Maintenance

• chore: update known checksums for 0.9.28 @​github-actions[bot] (#​744)
• chore: update known checksums for 0.9.27 @​github-actions[bot] (#​742)
• chore: update known checksums for 0.9.26 @​github-actions[bot] (#​734)
• chore: update known checksums for 0.9.25 @​github-actions[bot] (#​733)
• chore: update known checksums for 0.9.24 @​github-actions[bot] (#​730)

📚 Documentation

• Clarify impact of using actions/setup-python @​eifinger (#​732)

⬆️ Dependency updates

• Bump zizmorcore/zizmor-action from 0.3.0 to 0.4.1 @​dependabot[bot] (#​741)

v7.2.0: 🌈 add outputs python-version and python-cache-hit

Compare Source

Changes

Among some minor typo fixes and quality of life features for developers of actions the main feature of this release are new outputs:

• python-version: The Python version that was set (same content as existing UV_PYTHON)
• python-cache-hit: A boolean value to indicate the Python cache entry was found

While implementing this it became clear, that it is easier to handle the Python binaries in a separate cache entry. The added benefit for users is that the "normal" cache containing the dependencies can be used in all runs no matter if these cache the Python binaries or not.

[!NOTE]
This release will invalidate caches that contain the Python binaries. This happens a single time.

🐛 Bug fixes

• chore: remove stray space from UV_PYTHON_INSTALL_DIR message @​akx (#​720)

🚀 Enhancements

• add outputs python-version and python-cache-hit @​eifinger (#​728)
• Add action typings with validation @​krzema12 (#​721)

🧰 Maintenance

• fix: use uv_build backend for old-python-constraint-project @​eifinger (#​729)
• chore: update known checksums for 0.9.22 @​github-actions[bot] (#​727)
• chore: update known checksums for 0.9.21 @​github-actions[bot] (#​726)
• chore: update known checksums for 0.9.20 @​github-actions[bot] (#​725)
• chore: update known checksums for 0.9.18 @​github-actions[bot] (#​718)

⬆️ Dependency updates

• Bump peter-evans/create-pull-request from 7.0.9 to 8.0.0 @​dependabot[bot] (#​719)
• Bump github/codeql-action from 4.31.6 to 4.31.9 @​dependabot[bot] (#​723)

docker/login-action (docker/login-action)

v3.7.0

Compare Source

• Add scope input to set scopes for the authentication token by @​crazy-max in #​912
• Add support for AWS European Sovereign Cloud ECR by @​dphi in #​914
• Ensure passwords are redacted with registry-auth input by @​crazy-max in #​911
• build(deps): bump lodash from 4.17.21 to 4.17.23 in #​915

Full Changelog: docker/login-action@v3.6.0...v3.7.0

github/codeql-action (github/codeql-action)

v4.32.4

Compare Source

• Update default CodeQL bundle version to 2.24.2. #​3493
• Added an experimental change which improves how certificates are generated for the authentication proxy that is used by the CodeQL Action in Default Setup when private package registries are configured. This is expected to generate more widely compatible certificates and should have no impact on analyses which are working correctly already. We expect to roll this change out to everyone in February. #​3473
• When the CodeQL Action is run with debugging enabled in Default Setup and private package registries are configured, the "Setup proxy for registries" step will output additional diagnostic information that can be used for troubleshooting. #​3486
• Added a setting which allows the CodeQL Action to enable network debugging for Java programs. This will help GitHub staff support customers with troubleshooting issues in GitHub-managed CodeQL workflows, such as Default Setup. This setting can only be enabled by GitHub staff. #​3485
• Added a setting which enables GitHub-managed workflows, such as Default Setup, to use a nightly CodeQL CLI release instead of the latest, stable release that is used by default. This will help GitHub staff support customers whose analyses for a given repository or organization require early access to a change in an upcoming CodeQL CLI release. This setting can only be enabled by GitHub staff. #​3484

v4.32.3

Compare Source

• Added experimental support for testing connections to private package registries. This feature is not currently enabled for any analysis. In the future, it may be enabled by default for Default Setup. #​3466

v4.32.2

Compare Source

• Update default CodeQL bundle version to 2.24.1. #​3460

v4.32.1

Compare Source

• A warning is now shown in Default Setup workflow logs if a private package registry is configured using a GitHub Personal Access Token (PAT), but no username is configured. #​3422
• Fixed a bug which caused the CodeQL Action to fail when repository properties cannot successfully be retrieved. #​3421

v4.32.0

Compare Source

• Update default CodeQL bundle version to 2.24.0. #​3425

v4.31.11

Compare Source

• When running a Default Setup workflow with Actions debugging enabled, the CodeQL Action will now use more unique names when uploading logs from the Dependabot authentication proxy as workflow artifacts. This ensures that the artifact names do not clash between multiple jobs in a build matrix. #​3409
• Improved error handling throughout the CodeQL Action. #​3415
• Added experimental support for automatically excluding generated files from the analysis. This feature is not currently enabled for any analysis. In the future, it may be enabled by default for some GitHub-managed analyses. #​3318
• The changelog extracts that are included with releases of the CodeQL Action are now shorter to avoid duplicated information from appearing in Dependabot PRs. #​3403

v4.31.10

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

4.31.10 - 12 Jan 2026

• Update default CodeQL bundle version to 2.23.9. #​3393

See the full CHANGELOG.md for more information.

v4.31.9

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

4.31.9 - 16 Dec 2025

No user facing changes.

See the full CHANGELOG.md for more information.

renovatebot/github-action (renovatebot/github-action)

v46.1.2

Compare Source

Documentation

• update references to renovatebot/github-action to v46.1.1 (bf2591a)

Miscellaneous Chores

• deps: update dependency @​semantic-release/github to v12.0.6 (39c8850)
• deps: update dependency @​types/node to v24.10.13 (e0543db)
• deps: update dependency typescript-eslint to v8.55.0 (cc325e5)
• deps: update pnpm to v10.29.2 (53a5d66)
• deps: update pnpm to v10.29.3 (c889701)

Build System

• deps: lock file maintenance (6197b28)

Continuous Integration

• deps: update ghcr.io/renovatebot/renovate docker tag to v43.15.2 (6c531ac)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.15.3 (e4db07f)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.16.0 (dae8968)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.17.1 (01bec16)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.18.0 (30300b2)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.19.0 (9fad834)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.19.2 (a57ccc4)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.23.0 (1dc2f66)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.24.0 (9b2fdf5)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.24.1 (c8ef6d8)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.24.2 (adb1170)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.25.10 (fd47a40)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.25.11 (c9fc4f3)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.25.2 (ea9ae42)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.25.6 (e00d40c)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.25.7 (f547592)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.25.8 (54bb8d4)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.26.0 (577731a)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.26.1 (8b1d0d4)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.26.2 (2b3fcc8)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.26.4 (9fcdb6d)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.27.0 (3e7006a)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.29.0 (acd7cdb)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.29.2 (b2bea5d)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.30.0 (57724db)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.30.1 (80729bd)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.31.0 (53a62bb)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.31.1 (087d576)

v46.1.1

Compare Source

Documentation

• update references to renovatebot/github-action to v46.1.0 (3e59b30)

Miscellaneous Chores

• deps: update dependency @​semantic-release/github to v12.0.4 (009e8e9)
• deps: update dependency @​semantic-release/github to v12.0.5 (00a531a)
• deps: update dependency @​semantic-release/npm to v13.1.4 (b14aee3)
• deps: update dependency @​types/node to v24.10.11 (e4b8574)
• deps: update dependency @​types/node to v24.10.12 (547c051)
• deps: update dependency esbuild to v0.27.3 (254b8be)
• deps: update pnpm to v10.29.1 (5b3fe36)

Build System

• deps: lock file maintenance (6d4f8ba)

Continuous Integration

• deps: update ghcr.io/renovatebot/renovate docker tag to v43.10.1 (aafa9c6)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.10.2 (8905d37)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.10.3 (5583fa9)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.11.0 (acd6b7a)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.11.1 (13d385d)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.12.1 (de54e2e)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.14.0 (9f6ab2c)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.14.1 (1891356)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.15.0 (f9a9a11)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.15.1 (1b92a45)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.9.0 (e8637fa)

v46.1.0

Compare Source

Features

• add support for the NO_COLOR environment variable (#​1018) (7f791e8)

Documentation

• update references to renovatebot/github-action to v46.0.2 (b305ad3)

Miscellaneous Chores

• deps: update commitlint monorepo to v20.4.1 (e8b5109)
• deps: update dependency @​types/node to v24.10.10 (41820f3)
• deps: update node.js to v24.13.1 (40285b0)

Continuous Integration

• deps: update ghcr.io/renovatebot/renovate docker tag to v43.5.1 (1a6a41a)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.5.2 (57787cb)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.5.3 (8d7d410)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.5.4 (bfef2fb)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.5.5 (20ee987)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.6.0 (7e341be)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.6.2 (931fd8e)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.6.3 (5f27c88)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.8.0 (cdaa9e6)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.8.1 (28b06b1)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.8.2 (4d22b44)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.8.3 (81ff6bf)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.8.5 (f8022fe)

v46.0.2

Compare Source

Documentation

• update references to renovatebot/github-action to v46.0.1 (c8c35d4)

Miscellaneous Chores

• deps: replace dependency @​tsconfig/node22 with @​tsconfig/node24 (#​1012) (b6d94b7)
• deps: update commitlint monorepo to v20.4.0 (d745de9)
• deps: update dependency @​tsconfig/node24 to v24.0.4 (4c73fa7)
• deps: update dependency globals to v17.2.0 (4524c32)
• deps: update dependency globals to v17.3.0 (5bf342b)
• deps: update dependency typescript-eslint to v8.54.0 (6bf50f5)
• deps: update pnpm to v10.28.2 (fe54aec)
• deps: update semantic-release monorepo (603e973)

Build System

• deps: lock file maintenance (9f5abc6)

Continuous Integration

• deps: update ghcr.io/renovatebot/renovate docker tag to v43.0.10 (b9249f3)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.2.0 (dc3429f)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.2.1 (018d1e4)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.2.4 (1e4f4a8)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.2.5 (4301d7a)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.2.6 (c971e62)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.2.7 (63929db)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.2.8 (d638fa7)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.3.0 (#​1015) (7d877f2)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.3.1 (d07fed8)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.3.2 (0e34171)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.3.3 (9911dbb)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.3.4 (8c7764c)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.3.5 (84044a1)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.3.6 (eb848ca)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.4.0 (36c59f2)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.4.1 (3285d31)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.4.2 (c65676e)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.4.3 (a1fbfe1)

v46.0.1

Compare Source

Miscellaneous Chores

• deps: update dependency @​tsconfig/strictest to v2.0.8 (#​959) (6ba4a5c)
• deps: update dependency prettier-plugin-packagejson to v3 (#​999) (bce6a9f)
• deps: update dependency renovatebot/github-action to v46 (#​1011) (4d7de57)
• deps: update prettier packages (#​988) (8a6192f)

Build System

• deps: lock file maintenance (2fec032)

Continuous Integration

• deps: update ghcr.io/renovatebot/renovate docker tag to v43.0.6 (d361423)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.0.8 (c0ab525)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.0.9 (9f55a79)

v46.0.0

Compare Source

⚠ BREAKING CHANGES

• deps: Update ghcr.io/renovatebot/renovate Docker tag to v43 (#​993)

Features

• deps: Update ghcr.io/renovatebot/renovate Docker tag to v43 (#​993) (ae99b37)

v45.0.3

Compare Source

Bug Fixes

• deps: update dependency @​actions/core to v3 (#​1008) (d724dd3)

v45.0.2

Compare Source

Bug Fixes

• deps: update dependency @​actions/exec to v3 (#​1009) (e098430)

Miscellaneous Chores

• deps: replace dependency @​tsconfig/node20 with @​tsconfig/node22 (#​1010) (df519dc)
• deps: update dependency @​tsconfig/node22 to v22.0.5 (29e7d61)

v45.0.1

Compare Source

Bug Fixes

• deps: update dependency @​actions/core to v2 (#​1005) (ffd1bc7)
• deps: update dependency @​actions/exec to v2 (#​1007) (8680378)

Miscellaneous Chores

• deps: update dependency @​types/node to v24 (#​976) (d2b9da6)
• deps: update dependency globals to v17 (#​1001) (f391c83)
• deps: update dependency renovatebot/github-action to v45 (#​1006) (19b5bd8)
• renovate: fix config (#​998) (dffa4d4)
• renovate: group all renovate major updates (#​1003) (969380c)

Continuous Integration

• fix renovate comment for grouping (#​1004) (a07086a)

v45.0.0

Compare Source

⚠ BREAKING CHANGES

• Require node v24 (#​989)

Features

• Require node v24 (#​989) (569b928)

Miscellaneous Chores

• allow js explicit (#​991) (5b01b35)
• deps: update actions/cache action to v5.0.3 (5075ddc)
• deps: update dependency typescript-eslint to v8.53.1 (066c0b5)
• deps: update pnpm to v10.28.1 (c0fa679)
• renovate: group all Renovate updates together (#​992) (253db8a)
• renovater: exclude major from docs grouping (#​996) (4dfbc50)

Continuous Integration

• add auto reviewer (#​990) (5aaf050)
• deps: update ghcr.io/renovatebot/renovate docker tag to v42.92.10 (b74d2be)
• deps: update ghcr.io/renovatebot/renovate docker tag to v42.92.11 (6eb6ef2)
• deps: update ghcr.io/renovatebot/renovate docker tag to v42.92.5 (7996fff)
• deps: update ghcr.io/renovatebot/renovate docker tag to v42.92.9 (df65844)
• deps: update ghcr.io/renovatebot/renovate docker tag to v42.94.6 (4990c24)
• deps: update ghcr.io/renovatebot/renovate docker tag to v42.94.7 (e9974c0)
• deps: update ghcr.io/renovatebot/renovate docker tag to v42.95.0 (21d8fc4)
• deps: update ghcr.io/renovatebot/renovate docker tag to v42.95.1 (9332c36)
• deps: update renovate docker tag to v42.92.10 (d798112)
• deps: update renovate docker tag to v42.92.11 (a058a2f)
• deps: update renovate docker tag to v42.94.6 (68f0c4c)
• deps: update renovate docker tag to v42.94.7 (30bf1bf)
• deps: update renovate docker tag to v42.95.1 (416d47f)

v44.2.6

Compare Source

Documentation

• update references to actions/checkout to v6.0.2 (c493b2d)
• update references to ghcr.io/renovatebot/renovate to v42.92.4 (75fe498)
• update references to renovatebot/github-action to v44.2.5 (8627919)

Miscellaneous Chores

• deps: update dependency @​types/node to v20.19.29 (b8ce015)
• deps: update dependency @​types/node to v20.19.30 (c2d6419)
• deps: update dependency prettier to v3.8.0 (d0197d9)
• deps: update dependency prettier-plugin-packagejson to v2.5.21 (0725f72)
• deps: update dependency typescript-eslint to v8.53.0 (c3071bc)

Build System

• deps: lock file maintenance (8267212)

Continuous Integration

• deps: update actions/checkout action to v6.0.2 (bca8c02)
• deps: update ghcr.io/renovatebot/renovate docker tag to v42.85.4 (52745be)
• deps: update ghcr.io/renovatebot/renovate docker tag to v42.85.5 (6ebcfac)
• deps: update ghcr.io/renovatebot/renovate docker tag to v42.85.6 (e3e66f1)
• deps: update ghcr.io/r

---

Configuration

📅 Schedule: Branch creation - On day 1 and 15 of the month ( * * 1,15 * * ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[github-advanced-security]

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.