build(deps): bump the devops group across 1 directory with 7 updates

[dependabot]

Bumps the devops group with 7 updates in the / directory:

Package	From	To
actions/checkout	6.0.1	6.0.2
taiki-e/install-action	2.67.2	2.67.28
release-drafter/release-drafter	6.1.1	6.2.0
rlespinasse/github-slug-action	5.4.0	5.5.0
docker/build-push-action	6.18.0	6.19.1
docker/login-action	3.6.0	3.7.0
zizmorcore/zizmor-action	0.4.1	0.5.0

Updates actions/checkout from 6.0.1 to 6.0.2

Release notes

Sourced from actions/checkout's releases.

v6.0.2

What's Changed

• Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set by @​TingluoHuang in actions/checkout#2355
• Fix tag handling: preserve annotations and explicit fetch-tags by @​ericsciple in actions/checkout#2356

Full Changelog: actions/checkout@v6.0.1...v6.0.2

Changelog

Sourced from actions/checkout's changelog.

Changelog

v6.0.2

• Fix tag handling: preserve annotations and explicit fetch-tags by @​ericsciple in actions/checkout#2356

v6.0.1

• Add worktree support for persist-credentials includeIf by @​ericsciple in actions/checkout#2327

v6.0.0

• Persist creds to a separate file by @​ericsciple in actions/checkout#2286
• Update README to include Node.js 24 support details and requirements by @​salmanmkc in actions/checkout#2248

v5.0.1

• Port v6 cleanup to v5 by @​ericsciple in actions/checkout#2301

v5.0.0

• Update actions checkout to use node 24 by @​salmanmkc in actions/checkout#2226

v4.3.1

• Port v6 cleanup to v4 by @​ericsciple in actions/checkout#2305

v4.3.0

• docs: update README.md by @​motss in actions/checkout#1971
• Add internal repos for checking out multiple repositories by @​mouismail in actions/checkout#1977
• Documentation update - add recommended permissions to Readme by @​benwells in actions/checkout#2043
• Adjust positioning of user email note and permissions heading by @​joshmgross in actions/checkout#2044
• Update README.md by @​nebuk89 in actions/checkout#2194
• Update CODEOWNERS for actions by @​TingluoHuang in actions/checkout#2224
• Update package dependencies by @​salmanmkc in actions/checkout#2236

v4.2.2

• url-helper.ts now leverages well-known environment variables by @​jww3 in actions/checkout#1941
• Expand unit test coverage for isGhes by @​jww3 in actions/checkout#1946

v4.2.1

• Check out other refs/* by commit if provided, fall back to ref by @​orhantoy in actions/checkout#1924

v4.2.0

• Add Ref and Commit outputs by @​lucacome in actions/checkout#1180
• Dependency updates by @​dependabot- actions/checkout#1777, actions/checkout#1872

v4.1.7

• Bump the minor-npm-dependencies group across 1 directory with 4 updates by @​dependabot in actions/checkout#1739
• Bump actions/checkout from 3 to 4 by @​dependabot in actions/checkout#1697
• Check out other refs/* by commit by @​orhantoy in actions/checkout#1774
• Pin actions/checkout's own workflows to a known, good, stable version. by @​jww3 in actions/checkout#1776

v4.1.6

• Check platform to set archive extension appropriately by @​cory-miller in actions/checkout#1732

... (truncated)

Commits

• de0fac2 Fix tag handling: preserve annotations and explicit fetch-tags (#2356)
• 064fe7f Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...
• See full diff in compare view

Updates taiki-e/install-action from 2.67.2 to 2.67.28

Release notes

Sourced from taiki-e/install-action's releases.

2.67.28

• Update uv@latest to 0.10.2.

• Update syft@latest to 1.42.0.

• Update mise@latest to 2026.2.9.

• Update cyclonedx@latest to 0.30.0.

2.67.27

• Update sccache@latest to 0.14.0.

• Update typos@latest to 1.43.4.

• Update mise@latest to 2026.2.8.

2.67.26

• Update tombi@latest to 0.7.28.

• Update mise@latest to 2026.2.7.

2.67.25

• Update cargo-hack@latest to 0.6.42.

2.67.24

• Update cargo-llvm-cov@latest to 0.8.4.

• Update typos@latest to 1.43.3.

• Update vacuum@latest to 0.23.8.

2.67.23

• Update prek@latest to 0.3.2.

• Update mise@latest to 2026.2.5.

• Update typos@latest to 1.43.2.

• Update release-plz@latest to 0.3.155.

2.67.22

• Update uv@latest to 0.10.0.

• Update vacuum@latest to 0.23.7.

2.67.21

• Update cargo-llvm-cov@latest to 0.8.3.

• Update trivy@latest to 0.69.1.

... (truncated)

Changelog

Sourced from taiki-e/install-action's changelog.

Changelog

All notable changes to this project will be documented in this file.

This project adheres to Semantic Versioning.

[Unreleased]

[2.67.28] - 2026-02-11

• Update uv@latest to 0.10.2.

• Update syft@latest to 1.42.0.

• Update mise@latest to 2026.2.9.

• Update cyclonedx@latest to 0.30.0.

[2.67.27] - 2026-02-09

• Update sccache@latest to 0.14.0.

• Update typos@latest to 1.43.4.

• Update mise@latest to 2026.2.8.

[2.67.26] - 2026-02-09

• Update tombi@latest to 0.7.28.

• Update mise@latest to 2026.2.7.

[2.67.25] - 2026-02-07

• Update cargo-hack@latest to 0.6.42.

[2.67.24] - 2026-02-06

• Update cargo-llvm-cov@latest to 0.8.4.

• Update typos@latest to 1.43.3.

• Update vacuum@latest to 0.23.8.

[2.67.23] - 2026-02-06

... (truncated)

Commits

• d4422f2 Release 2.67.28
• 8eb8df0 Update changelog
• f2dad83 Update uv@latest to 0.10.2
• d352514 Update uv@latest to 0.10.1
• 1bd9eee Update syft@latest to 1.42.0
• d7ea18b Update mise@latest to 2026.2.9
• 4bab704 Update cyclonedx@latest to 0.30.0
• 1e67ded Release 2.67.27
• b0cd8d3 Update sccache@latest to 0.14.0
• 7b52b10 Update typos@latest to 1.43.4
• Additional commits viewable in compare view

Updates release-drafter/release-drafter from 6.1.1 to 6.2.0

Release notes

Sourced from release-drafter/release-drafter's releases.

v6.2.0

What's Changed

New

• Add config option for history-limit (#1470) @​gjvoosten
• Add 'commits-since' configuration option for release drafts (#1451) @​slawekjaranowski

Maintenance

• build: support OIDC for npmjs publishing (#1480) @​cchanche

Documentation

• Update README.md (#1434) @​kunaljubce

Full Changelog: release-drafter/release-drafter@v6.1.1...v6.2.0

Commits

• 6db134d ci: add diff for debugging unstaged files
• a9305a6 chore: fix package.json and lockfile
• 309083b chore: bump to v6.2.0
• 923fffe Add config option for history-limit (#1470)
• fa20e47 docs: typo in README.md (#1434)
• 4178e5a feat: 'commits-since' configuration option (#1451)
• 686295d build: support OIDC for npmjs publishing (#1480)
• 9928b92 setup oidc release flow
• See full diff in compare view

Updates rlespinasse/github-slug-action from 5.4.0 to 5.5.0

Release notes

Sourced from rlespinasse/github-slug-action's releases.

v5.5.0

5.5.0 (2026-02-04)

Features

• Pin sub-actions to full commit SHAs (#175) (9e7def6)

Commits

• 9e7def6 feat: Pin sub-actions to full commit SHAs (#175)
• e8d2331 Pin sub-actions to full commit SHAs (#175)
• See full diff in compare view

Updates docker/build-push-action from 6.18.0 to 6.19.1

Release notes

Sourced from docker/build-push-action's releases.

v6.19.1

• Derive GIT_AUTH_TOKEN host from GitHub server URL by @​crazy-max in docker/build-push-action#1456

Full Changelog: docker/build-push-action@v6.19.0...v6.19.1

v6.19.0

• Scope default git auth token to github.com by @​crazy-max in docker/build-push-action#1451
• Bump brace-expansion from 1.1.11 to 1.1.12 in docker/build-push-action#1396
• Bump form-data from 2.5.1 to 2.5.5 in docker/build-push-action#1391
• Bump js-yaml from 3.14.1 to 3.14.2 in docker/build-push-action#1429
• Bump lodash from 4.17.21 to 4.17.23 in docker/build-push-action#1446
• Bump tmp from 0.2.3 to 0.2.4 in docker/build-push-action#1398
• Bump undici from 5.28.4 to 5.29.0 in docker/build-push-action#1397

Full Changelog: docker/build-push-action@v6.18.0...v6.19.0

Commits

• 601a80b Merge pull request #1456 from crazy-max/auth-token-dyn-host
• 8f7fd7c chore: update generated content
• 710e335 derive GIT_AUTH_TOKEN host from GitHub server URL
• ee4ca42 Merge pull request #1398 from docker/dependabot/npm_and_yarn/tmp-0.2.4
• f1b3bb5 chore: update generated content
• db35f80 chore(deps): Bump tmp from 0.2.3 to 0.2.4
• a129300 Merge pull request #1397 from docker/dependabot/npm_and_yarn/undici-5.29.0
• ba15693 chore: update generated content
• 367ff5e chore(deps): Bump undici from 5.28.4 to 5.29.0
• 0149a90 Merge pull request #1396 from docker/dependabot/npm_and_yarn/brace-expansion-...
• Additional commits viewable in compare view

Updates docker/login-action from 3.6.0 to 3.7.0

Release notes

Sourced from docker/login-action's releases.

v3.7.0

• Add scope input to set scopes for the authentication token by @​crazy-max in docker/login-action#912
• Add support for AWS European Sovereign Cloud ECR by @​dphi in docker/login-action#914
• Ensure passwords are redacted with registry-auth input by @​crazy-max in docker/login-action#911
• build(deps): bump lodash from 4.17.21 to 4.17.23 in docker/login-action#915

Full Changelog: docker/login-action@v3.6.0...v3.7.0

Commits

• c94ce9f Merge pull request #915 from docker/dependabot/npm_and_yarn/lodash-4.17.23
• 8339c95 Merge pull request #912 from docker/scope
• c83e932 build(deps): bump lodash from 4.17.21 to 4.17.23
• b268aa5 chore: update generated content
• a603229 documentation for scope input
• 7567f92 Add scope input to set scopes for the authentication token
• 0567fa5 Merge pull request #914 from dphi/add-support-for-amazonaws.eu
• f6ef577 feat: add support for AWS European Sovereign Cloud ECR registries
• 916386b Merge pull request #911 from crazy-max/ensure-redact
• 5b3f94a chore: update generated content
• Additional commits viewable in compare view

Updates zizmorcore/zizmor-action from 0.4.1 to 0.5.0

Release notes

Sourced from zizmorcore/zizmor-action's releases.

v0.5.0

What's Changed

• Expose output-file as an output when advanced-security: true by @​unlobito in zizmorcore/zizmor-action#87

New Contributors

• @​unlobito made their first contribution in zizmorcore/zizmor-action#87

Full Changelog: zizmorcore/zizmor-action@v0.4.1...v0.5.0

Commits

• 0dce257 chore(deps): bump peter-evans/create-pull-request (#88)
• fb94974 Expose output-file as an output when advanced-security: true (#87)
• 867562a chore(deps): bump the github-actions group with 2 updates (#85)
• 7462f07 Bump pins in README (#84)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.