chore(deps): bump the github-actions group across 1 directory with 3 updates

[dependabot]

Bumps the github-actions group with 3 updates in the / directory: actions/checkout, rust-lang/crates-io-auth-action and super-linter/super-linter.

Updates actions/checkout from 6.0.3 to 7.0.0

Release notes

Sourced from actions/checkout's releases.

v7.0.0

What's Changed

• block checking out fork pr for pull_request_target and workflow_run by @​aiqiaoy in actions/checkout#2454
• Bump actions/publish-immutable-action from 0.0.3 to 0.0.4 in the minor-actions-dependencies group across 1 directory by @​dependabot[bot] in actions/checkout#2458
• Bump flatted from 3.3.1 to 3.4.2 by @​dependabot[bot] in actions/checkout#2460
• Bump js-yaml from 4.1.0 to 4.2.0 by @​dependabot[bot] in actions/checkout#2461
• Bump @​actions/core and @​actions/tool-cache and Remove uuid by @​dependabot[bot] in actions/checkout#2459
• upgrade module to esm and update dependencies by @​aiqiaoy in actions/checkout#2463
• Bump the minor-npm-dependencies group across 1 directory with 3 updates by @​dependabot[bot] in actions/checkout#2462
• getting ready for checkout v7 release by @​aiqiaoy in actions/checkout#2464
• update error wording by @​aiqiaoy in actions/checkout#2467

New Contributors

• @​aiqiaoy made their first contribution in actions/checkout#2454

Full Changelog: actions/checkout@v6.0.3...v7.0.0

Changelog

Sourced from actions/checkout's changelog.

Changelog

v7.0.0

• Block checking out fork PR for pull_request_target and workflow_run by @​aiqiaoy in actions/checkout#2454
• Bump actions/publish-immutable-action from 0.0.3 to 0.0.4 in the minor-actions-dependencies group across 1 directory by @​dependabot[bot] in actions/checkout#2458
• Bump flatted from 3.3.1 to 3.4.2 by @​dependabot[bot] in actions/checkout#2460
• Bump js-yaml from 4.1.0 to 4.2.0 by @​dependabot[bot] in actions/checkout#2461
• Bump @​actions/core and @​actions/tool-cache and Remove uuid by @​dependabot[bot] in actions/checkout#2459
• upgrade module to esm and update dependencies by @​aiqiaoy in actions/checkout#2463
• Bump the minor-npm-dependencies group across 1 directory with 3 updates by @​dependabot[bot] in actions/checkout#2462

v6.0.3

• Fix checkout init for SHA-256 repositories by @​yaananth in actions/checkout#2439
• fix: expand merge commit SHA regex and add SHA-256 test cases by @​yaananth in actions/checkout#2414

v6.0.2

• Fix tag handling: preserve annotations and explicit fetch-tags by @​ericsciple in actions/checkout#2356

v6.0.1

• Add worktree support for persist-credentials includeIf by @​ericsciple in actions/checkout#2327

v6.0.0

• Persist creds to a separate file by @​ericsciple in actions/checkout#2286
• Update README to include Node.js 24 support details and requirements by @​salmanmkc in actions/checkout#2248

v5.0.1

• Port v6 cleanup to v5 by @​ericsciple in actions/checkout#2301

v5.0.0

• Update actions checkout to use node 24 by @​salmanmkc in actions/checkout#2226

v4.3.1

• Port v6 cleanup to v4 by @​ericsciple in actions/checkout#2305

v4.3.0

• docs: update README.md by @​motss in actions/checkout#1971
• Add internal repos for checking out multiple repositories by @​mouismail in actions/checkout#1977
• Documentation update - add recommended permissions to Readme by @​benwells in actions/checkout#2043
• Adjust positioning of user email note and permissions heading by @​joshmgross in actions/checkout#2044
• Update README.md by @​nebuk89 in actions/checkout#2194
• Update CODEOWNERS for actions by @​TingluoHuang in actions/checkout#2224
• Update package dependencies by @​salmanmkc in actions/checkout#2236

v4.2.2

• url-helper.ts now leverages well-known environment variables by @​jww3 in actions/checkout#1941
• Expand unit test coverage for isGhes by @​jww3 in actions/checkout#1946

v4.2.1

• Check out other refs/* by commit if provided, fall back to ref by @​orhantoy in actions/checkout#1924

... (truncated)

Commits

• 9c091bb update error wording (#2467)
• 1044a6d getting ready for checkout v7 release (#2464)
• f028218 Bump the minor-npm-dependencies group across 1 directory with 3 updates (#2462)
• d914b26 upgrade module to esm and update dependencies (#2463)
• 537c7ef Bump @​actions/core and @​actions/tool-cache and Remove uuid (#2459)
• 130a169 Bump js-yaml from 4.1.0 to 4.2.0 (#2461)
• 7d09575 Bump flatted from 3.3.1 to 3.4.2 (#2460)
• 0f9f3aa Bump actions/publish-immutable-action (#2458)
• f9e715a block checking out fork pr for pull_request_target and workflow_run (#2454)
• See full diff in compare view

Updates rust-lang/crates-io-auth-action from 1.0.4 to 1.0.5

Release notes

Sourced from rust-lang/crates-io-auth-action's releases.

v1.0.5

What's Changed

• update to tsdown 0.22 by @​marcoieni in rust-lang/crates-io-auth-action#239 and rust-lang/crates-io-auth-action#254
• update to typescript 6 by @​marcoieni in rust-lang/crates-io-auth-action#256
• other dependency updates

Internal changes

• renovate: rename updateTypes field by @​marcoieni in rust-lang/crates-io-auth-action#219
• renovate: don't raise individual PRs for crates non breaking changes by @​marcoieni in rust-lang/crates-io-auth-action#220
• use rust-lang renovate preset by @​marcoieni in rust-lang/crates-io-auth-action#235
• ci(links): accept 403 as success by @​marcoieni in rust-lang/crates-io-auth-action#263

Full Changelog: rust-lang/crates-io-auth-action@v1.0.4...v1.0.5

Commits

• c6f97d4 Merge pull request #259 from rust-lang/renovate/lock-file-maintenance
• b929a92 package dist
• 9d23f3b chore(deps): lock file maintenance
• 2b6b194 Merge pull request #263 from rust-lang/ci-links-accept-403-as-failure
• 1a7afc2 ci(links): accept 403 as success
• 701b15c Merge pull request #260 from rust-lang/renovate/tsdown-0.x-lockfile
• cf898e1 package dist
• 1a6a621 chore(deps): update dependency tsdown to v0.22.2
• 9f93ac2 Merge pull request #261 from rust-lang/renovate/github-actions
• 5463451 chore(deps): update github actions to v6.0.3
• Additional commits viewable in compare view

Updates super-linter/super-linter from 8.6.0 to 8.7.0

Release notes

Sourced from super-linter/super-linter's releases.

v8.7.0

8.7.0 (2026-06-18)

🚀 Features

• powershell ansi output and dynamic sizing (#7793) (b573256), closes #7445
• update existing pr summary comment (#7848) (85afaee)

🐛 Bugfixes

• docs: don't mention extension in bash-exec (#7708) (56c7c3c)
• enable_github_actions_step_summary ref in debug log (#7853) (8c38f8f)
• ktlint installation (#7883) (6ab7200)
• output: pass comment payload via stdin to jq and curl (#7928) (4dd300c)
• remove debug statement when calling gh api (#7889) (30ed3d5)
• terragrunt version lookup (#7918) (a2eaeb1)

⬆️ Dependency updates

• bundler: bump rubocop (#7923) (0738987)
• bundler: bump rubocop in /dependencies in the rubocop group (#7731) (bf2414c)
• bundler: bump rubocop-capybara (#7781) (35ef3f6)
• bundler: bump the rubocop group across 1 directory with 2 updates (#7816) (5a6de32)
• bundler: bump the rubocop group across 1 directory with 3 updates (#7875) (4d01de2)
• bundler: bump the rubocop group in /dependencies with 2 updates (#7890) (cd79eea)
• docker: bump dart in the docker group (#7755) (86c9c54)
• docker: bump goreleaser/goreleaser in the docker group (#7705) (487d0d8)
• docker: bump mvdan/shfmt in the docker group (#7718) (a1fc30a)
• docker: bump python (#7730) (c5fb918)
• docker: bump the docker group across 1 directory with 10 updates (#7817) (5e3985b)
• docker: bump the docker group across 1 directory with 11 updates (#7876) (9bc8ec9)
• docker: bump the docker group across 1 directory with 3 updates (#7765) (d9f1398)
• docker: bump the docker group across 1 directory with 5 updates (#7786) (b7ba6a5)
• docker: bump the docker group across 1 directory with 6 updates (#7912) (7b70a50)
• docker: bump the docker group across 1 directory with 8 updates (#7753) (3fec5a3)
• java: bump com.puppycrawl.tools:checkstyle (#7788) (4a69c1a)
• java: bump com.puppycrawl.tools:checkstyle (#7914) (65ad252)
• npm: bump @​hono/node-server in /dependencies (#7720) (a8c6363)
• npm: bump @​protobufjs/utf8 from 1.1.0 to 1.1.1 in /dependencies (#7812) (0651d17)
• npm: bump @​stoplight/spectral-cli in /dependencies (#7743) (fd0d01c)
• npm: bump @​stoplight/spectral-cli in /dependencies (#7814) (813e4fb)
• npm: bump brace-expansion (#7840) (f6e64b5)
• npm: bump fast-uri from 3.0.6 to 3.1.2 in /dependencies (#7803) (9253b88)
• npm: bump fast-xml-builder from 1.1.4 to 1.2.0 in /dependencies (#7802) (5b044ae)
• npm: bump hono from 4.12.14 to 4.12.18 in /dependencies (#7801) (b39c4bb)
• npm: bump hono from 4.12.7 to 4.12.12 in /dependencies (#7721) (ab671c2)
• npm: bump next from 16.2.2 to 16.2.3 in /dependencies (#7739) (223d8b2)

... (truncated)

Changelog

Sourced from super-linter/super-linter's changelog.

Changelog

8.7.0 (2026-06-18)

🚀 Features

• powershell ansi output and dynamic sizing (#7793) (b573256), closes #7445
• update existing pr summary comment (#7848) (85afaee)

🐛 Bugfixes

• docs: don't mention extension in bash-exec (#7708) (56c7c3c)
• enable_github_actions_step_summary ref in debug log (#7853) (8c38f8f)
• ktlint installation (#7883) (6ab7200)
• output: pass comment payload via stdin to jq and curl (#7928) (4dd300c)
• remove debug statement when calling gh api (#7889) (30ed3d5)
• terragrunt version lookup (#7918) (a2eaeb1)

⬆️ Dependency updates

• bundler: bump rubocop (#7923) (0738987)
• bundler: bump rubocop in /dependencies in the rubocop group (#7731) (bf2414c)
• bundler: bump rubocop-capybara (#7781) (35ef3f6)
• bundler: bump the rubocop group across 1 directory with 2 updates (#7816) (5a6de32)
• bundler: bump the rubocop group across 1 directory with 3 updates (#7875) (4d01de2)
• bundler: bump the rubocop group in /dependencies with 2 updates (#7890) (cd79eea)
• docker: bump dart in the docker group (#7755) (86c9c54)
• docker: bump goreleaser/goreleaser in the docker group (#7705) (487d0d8)
• docker: bump mvdan/shfmt in the docker group (#7718) (a1fc30a)
• docker: bump python (#7730) (c5fb918)
• docker: bump the docker group across 1 directory with 10 updates (#7817) (5e3985b)
• docker: bump the docker group across 1 directory with 11 updates (#7876) (9bc8ec9)
• docker: bump the docker group across 1 directory with 3 updates (#7765) (d9f1398)
• docker: bump the docker group across 1 directory with 5 updates (#7786) (b7ba6a5)
• docker: bump the docker group across 1 directory with 6 updates (#7912) (7b70a50)
• docker: bump the docker group across 1 directory with 8 updates (#7753) (3fec5a3)
• java: bump com.puppycrawl.tools:checkstyle (#7788) (4a69c1a)
• java: bump com.puppycrawl.tools:checkstyle (#7914) (65ad252)
• npm: bump @​hono/node-server in /dependencies (#7720) (a8c6363)
• npm: bump @​protobufjs/utf8 from 1.1.0 to 1.1.1 in /dependencies (#7812) (0651d17)
• npm: bump @​stoplight/spectral-cli in /dependencies (#7743) (fd0d01c)
• npm: bump @​stoplight/spectral-cli in /dependencies (#7814) (813e4fb)
• npm: bump brace-expansion (#7840) (f6e64b5)
• npm: bump fast-uri from 3.0.6 to 3.1.2 in /dependencies (#7803) (9253b88)
• npm: bump fast-xml-builder from 1.1.4 to 1.2.0 in /dependencies (#7802) (5b044ae)
• npm: bump hono from 4.12.14 to 4.12.18 in /dependencies (#7801) (b39c4bb)
• npm: bump hono from 4.12.7 to 4.12.12 in /dependencies (#7721) (ab671c2)

... (truncated)

Commits

• 4ce2083 chore(main): release 8.7.0 (#7704)
• b2baf83 deps(npm): bump the npm group across 1 directory with 9 updates (#7939)
• 3e6cd30 chore: exempt release prs from stale check (#7934)
• 7b70a50 deps(docker): bump the docker group across 1 directory with 6 updates (#7912)
• c5fb918 deps(docker): bump python (#7730)
• 3833d50 deps(npm): bump protobufjs (#7917)
• 27acb3c deps(python): bump the pip group across 1 directory with 6 updates (#7932)
• 8d41efe ci(dev-docker): bump node (#7846)
• 65ad252 deps(java): bump com.puppycrawl.tools:checkstyle (#7914)
• ef436c3 ci(dev-npm): bump release-please (#7892)
• Additional commits viewable in compare view

[github-actions]

Super-linter summary

Language	Validation result
GITHUB_ACTIONS	Pass ✅
GITLEAKS	Pass ✅
GIT_COMMITLINT	Pass ✅
YAML	Pass ✅

All files and directories linted successfully

For more information, see the GitHub Actions workflow run

Powered by Super-linter

[hydai]

@dependabot rebase