From 79f17859c54fe37535f7d67ab5a1fa11dcd427f5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 13 May 2026 23:57:58 +0000
Subject: [PATCH] chore(deps): bump the everything group with 3 updates

Bumps the everything group with 3 updates: [github/codeql-action](https://github.com/github/codeql-action), [KineticCafe/actions-dco](https://github.com/kineticcafe/actions-dco) and [cloudflare/wrangler-action](https://github.com/cloudflare/wrangler-action).


Updates `github/codeql-action` from 4.35.3 to 4.35.4
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/e46ed2cbd01164d986452f91f178727624ae40d7...68bde559dea0fdcac2102bfdf6230c5f70eb485e)

Updates `KineticCafe/actions-dco` from 2.1.1 to 3.0.0
- [Release notes](https://github.com/kineticcafe/actions-dco/releases)
- [Changelog](https://github.com/KineticCafe/actions-dco/blob/main/CHANGELOG.md)
- [Commits](https://github.com/kineticcafe/actions-dco/compare/6e1652ef3027ce128e65e6edd215ae053350bd16...f7fe2fdfb5808e2528042be3919b67079100b96b)

Updates `cloudflare/wrangler-action` from 3.15.0 to 4.0.0
- [Release notes](https://github.com/cloudflare/wrangler-action/releases)
- [Changelog](https://github.com/cloudflare/wrangler-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/cloudflare/wrangler-action/compare/9acf94ace14e7dc412b076f2c5c20b8ce93c79cd...ebbaa1584979971c8614a24965b4405ff95890e0)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.35.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: everything
- dependency-name: KineticCafe/actions-dco
  dependency-version: 3.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: everything
- dependency-name: cloudflare/wrangler-action
  dependency-version: 4.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: everything
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/ossf-scorecard.yml           | 2 +-
 .github/workflows/test-dco.yml                 | 2 +-
 .github/workflows/test-sast.yml                | 6 +++---
 .github/workflows/website-cloudflare-pages.yml | 2 +-
 4 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/ossf-scorecard.yml b/.github/workflows/ossf-scorecard.yml
index 8122a1b..1afa4d6 100644
--- a/.github/workflows/ossf-scorecard.yml
+++ b/.github/workflows/ossf-scorecard.yml
@@ -69,6 +69,6 @@ jobs:
       # Upload the results to GitHub's code scanning dashboard (optional).
       # Commenting out will disable upload of results to your repo's Code Scanning dashboard
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@e46ed2cbd01164d986452f91f178727624ae40d7 # v4.35.3
+        uses: github/codeql-action/upload-sarif@68bde559dea0fdcac2102bfdf6230c5f70eb485e # v4.35.4
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/test-dco.yml b/.github/workflows/test-dco.yml
index e9c11ef..e91c162 100644
--- a/.github/workflows/test-dco.yml
+++ b/.github/workflows/test-dco.yml
@@ -12,4 +12,4 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Check for Developer Certificate of Origin (DCO) compliance
-        uses: KineticCafe/actions-dco@6e1652ef3027ce128e65e6edd215ae053350bd16 # v2.1.1
+        uses: KineticCafe/actions-dco@f7fe2fdfb5808e2528042be3919b67079100b96b # v3.0.0
diff --git a/.github/workflows/test-sast.yml b/.github/workflows/test-sast.yml
index 9ca4f9e..3370a08 100644
--- a/.github/workflows/test-sast.yml
+++ b/.github/workflows/test-sast.yml
@@ -135,16 +135,16 @@ jobs:
         uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@e46ed2cbd01164d986452f91f178727624ae40d7 # v4.35.3
+        uses: github/codeql-action/init@68bde559dea0fdcac2102bfdf6230c5f70eb485e # v4.35.4
         with:
           languages: ${{ matrix.language }}
           queries: +security-and-quality
 
       - name: Autobuild
-        uses: github/codeql-action/autobuild@e46ed2cbd01164d986452f91f178727624ae40d7 # v4.35.3
+        uses: github/codeql-action/autobuild@68bde559dea0fdcac2102bfdf6230c5f70eb485e # v4.35.4
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@e46ed2cbd01164d986452f91f178727624ae40d7 # v4.35.3
+        uses: github/codeql-action/analyze@68bde559dea0fdcac2102bfdf6230c5f70eb485e # v4.35.4
         with:
           category: "/language:${{ matrix.language }}"
 
diff --git a/.github/workflows/website-cloudflare-pages.yml b/.github/workflows/website-cloudflare-pages.yml
index a50fb39..2238dff 100644
--- a/.github/workflows/website-cloudflare-pages.yml
+++ b/.github/workflows/website-cloudflare-pages.yml
@@ -38,7 +38,7 @@ jobs:
         run: |
           npm run build
       - name: Publish website
-        uses: cloudflare/wrangler-action@9acf94ace14e7dc412b076f2c5c20b8ce93c79cd # v3.15.0
+        uses: cloudflare/wrangler-action@ebbaa1584979971c8614a24965b4405ff95890e0 # v4.0.0
         with:
           workingDirectory: websites/${{ env.DOMAIN_NAME }}
           accountId: ${{ secrets.CLOUDFLARE_ACCOUNT_ID }}