Merge branch 'master' into dependabot/github_actions/actions/dependen…

…cy-review-action-4.2.5

.github/workflows/build.yml

@@ -100,7 +100,7 @@ jobs:
           egress-policy: audit
 
       - name: Download ${{ matrix.asset_name }}
-        uses: actions/download-artifact@87c55149d96e628cc2ef7e6fc2aab372015aec85 # v4.1.3
+        uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4
         with:
           name: ${{ matrix.asset_name }}
       - name: Set executable flag
@@ -133,7 +133,7 @@ jobs:
           egress-policy: audit
 
       - name: Download ${{ matrix.asset_name }}
-        uses: actions/download-artifact@87c55149d96e628cc2ef7e6fc2aab372015aec85 # v4.1.3
+        uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4
         with:
           name: ${{ matrix.asset_name }}
       - name: Set executable flag

.github/workflows/codacy.yml

@@ -45,7 +45,7 @@ jobs:
 
       # Execute Codacy Analysis CLI and generate a SARIF output with the security issues identified during the analysis
       - name: Run Codacy Analysis CLI
-        uses: codacy/codacy-analysis-cli-action@d840f886c4bd4edc059706d09c6a1586111c540b
+        uses: codacy/codacy-analysis-cli-action@33d455949345bddfdb845fba76b57b70cc83754b
         with:
           # Check https://github.com/codacy/codacy-analysis-cli#project-token to get your project token from your Codacy repository
           # You can also omit the token and run the tools that support default configurations

.github/workflows/psalm.yml

@@ -35,7 +35,7 @@ jobs:
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: Psalm Security Scan
-        uses: psalm/psalm-github-security-scan@f3e6fd9432bc3e44aec078572677ce9d2ef9c287
+        uses: psalm/psalm-github-security-scan@9ec1b5e2b854b3f048fa32e8c4aaa9ae05d77345
 
       - name: Upload Security Analysis results to GitHub
         uses: github/codeql-action/upload-sarif@1b1aada464948af03b950897e5eb522f92603cc2 # v3.24.9

.github/workflows/snyk-container.yml

@@ -45,7 +45,7 @@ jobs:
       # Snyk can be used to break the build when it detects vulnerabilities.
       # In this case we want to upload the issues to GitHub Code Scanning
       continue-on-error: true
-      uses: snyk/actions/docker@1d672a455ab3339ef0a0021e1ec809165ee12fad
+      uses: snyk/actions/docker@8349f9043a8b7f0f3ee8885bf28f0b388d2446e8
       env:
         # In order to use the Snyk Action you will need to have a Snyk API token.
         # More details in https://github.com/snyk/actions#getting-your-snyk-token

.github/workflows/snyk-infrastructure.yml

@@ -42,7 +42,7 @@ jobs:
         # Snyk can be used to break the build when it detects security issues.
         # In this case we want to upload the issues to GitHub Code Scanning
         continue-on-error: true
-        uses: snyk/actions/iac@1d672a455ab3339ef0a0021e1ec809165ee12fad
+        uses: snyk/actions/iac@8349f9043a8b7f0f3ee8885bf28f0b388d2446e8
         env:
           # In order to use the Snyk Action you will need to have a Snyk API token.
           # More details in https://github.com/snyk/actions#getting-your-snyk-token

.github/workflows/snyk-security.yml

@@ -44,7 +44,7 @@ jobs:
       - name: Set up Snyk CLI to check for security issues
         # Snyk can be used to break the build when it detects security issues.
         # In this case we want to upload the SAST issues to GitHub Code Scanning
-        uses: snyk/actions/setup@1d672a455ab3339ef0a0021e1ec809165ee12fad
+        uses: snyk/actions/setup@8349f9043a8b7f0f3ee8885bf28f0b388d2446e8
 
         # For Snyk Open Source you must first set up the development environment for your application's dependencies
         # For example for Node