chore(deps): update github-actions

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
netcracker/qubership-workflow-hub	action	patch	2.2.0 → v2.2.2
netcracker/qubership-workflow-hub	action	patch	v2.2.0 → v2.2.2
webiny/action-conventional-commits	action	minor	v1.3.1 → v1.4.2

Warnings (1)

Please correct - or verify that you can safely ignore - these warnings before you merge this PR.

• netcracker/qubership-workflow-hub: Could not determine new digest for update (github-tags package netcracker/qubership-workflow-hub)

---

---

Warning

Some dependencies could not be looked up. Check the warning logs for more information.

---

Release Notes

netcracker/qubership-workflow-hub (netcracker/qubership-workflow-hub)

v2.2.2: 2.2.2

Compare Source

🚀 Release

What's Changed

• (#​748) chore(deps): bump webiny/action-conventional-commits from 1.3.1 to 1.4.2 in /.github/workflows by @​dependabot[bot]
• (#​746) chore(deps): bump Netcracker/qubership-workflow-hub from 1.0.7 to 2.2.1 in /.github/workflows by @​dependabot[bot]
• (#​740) chore: k8s-hardening-scan action changed default config path by @​borislavr
• (#​738) chore(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 in /actions/store-input-params by @​dependabot[bot]
• (#​737) chore(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 in /actions/maven-snapshot-deploy by @​dependabot[bot]
• (#​736) chore(deps): bump actions/cache from 5.0.4 to 5.0.5 in /actions/maven-snapshot-deploy by @​dependabot[bot]
• (#​735) chore(deps): bump actions/cache from 5.0.4 to 5.0.5 in /actions/maven-release by @​dependabot[bot]
• (#​734) chore(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 in /actions/docker-action by @​dependabot[bot]
• (#​733) chore(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 in /actions/charts-values-update-action by @​dependabot[bot]
• (#​732) chore(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 in /actions/cdxgen by @​dependabot[bot]
• (#​729) chore(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 in /.github/workflows by @​dependabot[bot]
• (#​728) chore(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1 in /.github/workflows by @​dependabot[bot]
• (#​731) chore(deps): bump actions/cache from 5.0.4 to 5.0.5 in /.github/workflows by @​dependabot[bot]
• (#​730) chore(deps): bump github/codeql-action from 4.35.1 to 4.35.2 in /.github/workflows by @​dependabot[bot]
• (#​727) chore(deps): bump aquasecurity/trivy-action from 0.35.0 to 0.36.0 in /.github/workflows by @​dependabot[bot]
• (#​726) chore(deps): bump @​actions/github from 9.0.0 to 9.1.1 in /actions/pr-assigner by @​dependabot[bot]
• (#​725) chore(deps-dev): bump esbuild from 0.27.7 to 0.28.0 in /actions/pr-assigner by @​dependabot[bot]
• (#​723) chore(deps-dev): bump esbuild from 0.27.7 to 0.28.0 in /actions/metadata-action by @​dependabot[bot]
• (#​724) chore(deps): bump @​actions/github from 9.0.0 to 9.1.1 in /actions/metadata-action by @​dependabot[bot]
• (#​721) chore(deps): bump @​actions/github from 9.0.0 to 9.1.1 in /actions/custom-event by @​dependabot[bot]
• (#​722) chore(deps-dev): bump esbuild from 0.27.7 to 0.28.0 in /actions/custom-event by @​dependabot[bot]
• (#​720) chore(deps-dev): bump esbuild from 0.27.7 to 0.28.0 in /actions/container-package-cleanup by @​dependabot[bot]
• (#​719) chore(deps): bump @​actions/github from 9.0.0 to 9.1.1 in /actions/container-package-cleanup by @​dependabot[bot]
• (#​718) chore(deps-dev): bump esbuild from 0.27.7 to 0.28.0 in /actions/assets-action by @​dependabot[bot]
• (#​717) chore(deps): bump @​actions/glob from 0.6.1 to 0.7.0 in /actions/assets-action by @​dependabot[bot]
• (#​716) chore(deps): bump @​actions/github from 9.0.0 to 9.1.1 in /actions/assets-action by @​dependabot[bot]

💡 New Features

• (#​739) feat: changed results filtration and log notification by @​borislavr

📝 Documentation

• (#​714) docs(actions/charts-values-update-action): sync README by @​borislavr
• (#​715) docs(actions): rewrite READMEs for maven-snapshot-deploy and maven-release by @​borislavr

---

Full Changelog: Netcracker/qubership-workflow-hub@v2.2.1...v2.2.2

v2.2.1: 2.2.1

Compare Source

🚀 Release

What's Changed

• (#​695) chore(deps-dev): bump esbuild from 0.27.4 to 0.27.7 in /actions/custom-event by @​dependabot[bot]
• (#​694) chore(deps-dev): bump esbuild from 0.27.4 to 0.27.7 in /actions/container-package-cleanup by @​dependabot[bot]
• (#​693) chore(deps-dev): bump esbuild from 0.27.4 to 0.27.7 in /actions/assets-action by @​dependabot[bot]
• (#​696) chore(deps-dev): bump esbuild from 0.27.4 to 0.27.7 in /actions/metadata-action by @​dependabot[bot]
• (#​697) chore(deps-dev): bump esbuild from 0.27.4 to 0.27.7 in /actions/pr-assigner by @​dependabot[bot]
• (#​705) chore(deps): bump aws-actions/configure-aws-credentials from 6.0.0 to 6.1.0 in /.github/workflows by @​dependabot[bot]
• (#​704) chore(deps): bump docker/login-action from 4.0.0 to 4.1.0 in /.github/workflows by @​dependabot[bot]
• (#​706) chore(deps): bump actions/upload-pages-artifact from 4.0.0 to 5.0.0 in /actions/cdxgen by @​dependabot[bot]
• (#​707) chore(deps): bump docker/login-action from 4.0.0 to 4.1.0 in /actions/docker-action by @​dependabot[bot]
• (#​702) chore(deps): bump github/codeql-action from 4.32.6 to 4.35.1 in /.github/workflows by @​dependabot[bot]
• (#​699) chore(deps): bump super-linter/super-linter from 8.5.0 to 8.6.0 in /.github/workflows by @​dependabot[bot]
• (#​701) chore(deps): bump netcracker/qubership-workflow-hub/.github/workflows/release-drafter.yml from 2.1.2 to 2.2.0 in /.github/workflows by @​dependabot[bot]
• (#​700) chore(deps): bump netcracker/qubership-workflow-hub/.github/workflows/re-security-scan.yml from 2.1.2 to 2.2.0 in /.github/workflows by @​dependabot[bot]
• (#​698) chore(deps): bump Netcracker/qubership-workflow-hub from 1.0.7 to 2.2.0 in /.github/workflows by @​dependabot[bot]
• (#​690) chore(deps): bump lodash from 4.17.23 to 4.18.1 in /actions/assets-action in the npm_and_yarn group across 1 directory by @​dependabot[bot]
• (#​689) chore(deps): bump azure/setup-helm from 4.3.1 to 5.0.0 in /actions/charts-values-update-action by @​dependabot[bot]
• (#​688) chore(deps): bump actions/setup-go from 6.3.0 to 6.4.0 in /.github/workflows by @​dependabot[bot]
• (#​687) chore(deps): bump anchore/scan-action from 7.3.2 to 7.4.0 in /.github/workflows by @​dependabot[bot]
• (#​686) chore(deps): bump azure/setup-helm from 4.3.1 to 5.0.0 in /.github/workflows by @​dependabot[bot]
• (#​681) chore(deps): bump the npm_and_yarn group across 1 directory with 1 update by @​dependabot[bot]

💡 New Features

• (#​711) feat(actions/k8s-hardening-scan): add Kubernetes container hardening scan action by @​nookyo
• (#​710) feat(.claude): add markdown and zizmor skills with pre-flight audit in pull-request by @​nookyo

---

Full Changelog: Netcracker/qubership-workflow-hub@v2.2.0...v2.2.1

webiny/action-conventional-commits (webiny/action-conventional-commits)

v1.4.2

Compare Source

v1.4.1

Compare Source

v1.4.0

Compare Source

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud