From 9fe0eeff801b35a5f776d63440d207642723cd3a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 13 May 2024 11:56:30 -0700
Subject: [PATCH 1/4] chore: bump azure/CLI from 1.0.9 to 2.0.0 (#408)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps [azure/CLI](https://github.com/azure/cli) from 1.0.9 to 2.0.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/azure/cli/releases">azure/CLI's
releases</a>.</em></p>
<blockquote>
<h2>GitHub Action for Azure CLI v2</h2>
<h2>What's Changed</h2>
<ul>
<li>Update Action to use Node.js v20 by <a
href="https://github.com/eikooc"><code>@​eikooc</code></a> in <a
href="https://redirect.github.com/Azure/cli/pull/126">Azure/cli#126</a></li>
<li>Bump dependencies to the latest versions by <a
href="https://github.com/MoChilia"><code>@​MoChilia</code></a> in <a
href="https://redirect.github.com/Azure/cli/pull/135">Azure/cli#135</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/eikooc"><code>@​eikooc</code></a> made
their first contribution in <a
href="https://redirect.github.com/Azure/cli/pull/126">Azure/cli#126</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/Azure/cli/compare/v1.0.9...v2">https://github.com/Azure/cli/compare/v1.0.9...v2</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/Azure/cli/commit/965c8d7571d2231a54e321ddd07f7b10317f34d9"><code>965c8d7</code></a>
Release v2</li>
<li><a
href="https://github.com/Azure/cli/commit/4343bca283b169928e26678f7a927e27bca5aac7"><code>4343bca</code></a>
update readme for v2 (<a
href="https://redirect.github.com/azure/cli/issues/140">#140</a>)</li>
<li><a
href="https://github.com/Azure/cli/commit/0150783ef4754a992c22f1f9f02d4d52cc75d8de"><code>0150783</code></a>
Add changes</li>
<li><a
href="https://github.com/Azure/cli/commit/4b557fa51df52fe3c1419767b3f9f4e4b3f5fc75"><code>4b557fa</code></a>
Use <code>process.env</code> instead of <code>core.exportvariable</code>
to set env (<a
href="https://redirect.github.com/azure/cli/issues/138">#138</a>)</li>
<li><a
href="https://github.com/Azure/cli/commit/12aaf8e03cc10b314932344633f0ba9ce754506c"><code>12aaf8e</code></a>
remove env for integration test (<a
href="https://redirect.github.com/azure/cli/issues/137">#137</a>)</li>
<li><a
href="https://github.com/Azure/cli/commit/09e9174ac76e10306dbcaaba7851fccdf45f56f3"><code>09e9174</code></a>
Add changes</li>
<li><a
href="https://github.com/Azure/cli/commit/bf9d5ac2270a9a34d0c099aec83837844885be1a"><code>bf9d5ac</code></a>
Bump dependencies to the latest versions (<a
href="https://redirect.github.com/azure/cli/issues/135">#135</a>)</li>
<li><a
href="https://github.com/Azure/cli/commit/f3881a60511db355db9ba9ed5848426c82b6acd1"><code>f3881a6</code></a>
{Automation} Add CI tests (<a
href="https://redirect.github.com/azure/cli/issues/136">#136</a>)</li>
<li><a
href="https://github.com/Azure/cli/commit/3994327f5fcaad20218f886037436690a1a77f02"><code>3994327</code></a>
Update action node version from v16 to v20(<a
href="https://redirect.github.com/azure/cli/issues/126">#126</a>)</li>
<li><a
href="https://github.com/Azure/cli/commit/9849316e8dae4122162bc6bc83c98b6019e17cab"><code>9849316</code></a>
add permission block (<a
href="https://redirect.github.com/azure/cli/issues/130">#130</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/azure/cli/compare/v1.0.9...v2.0.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=azure/CLI&package-manager=github_actions&previous-version=1.0.9&new-version=2.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/e2e-workflow.yml | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/e2e-workflow.yml b/.github/workflows/e2e-workflow.yml
index 3e5465b94..40081a344 100644
--- a/.github/workflows/e2e-workflow.yml
+++ b/.github/workflows/e2e-workflow.yml
@@ -110,7 +110,7 @@ jobs:
           AZURE_ACR_NAME: ${{ env.CLUSTER_NAME }}
 
       - name: Create Azure Identity
-        uses: azure/CLI@v1.0.9
+        uses: azure/CLI@v2.0.0
         with:
           inlineScript: |
             az identity create --name gpuIdentity --resource-group  ${{ env.CLUSTER_NAME }}
@@ -154,14 +154,14 @@ jobs:
           subscription-id: ${{ secrets.E2E_SUBSCRIPTION_ID }}
 
       - name: Create Role Assignment
-        uses: azure/CLI@v1.0.9
+        uses: azure/CLI@v2.0.0
         with:
           inlineScript: |
             IDENTITY_PRINCIPAL_ID="$(az identity show --name gpuIdentity --resource-group ${{ env.CLUSTER_NAME }} --query 'principalId' -otsv)"
             az role assignment create --assignee ${IDENTITY_PRINCIPAL_ID} --scope "/subscriptions/${{ secrets.E2E_SUBSCRIPTION_ID }}/resourceGroups/${{ env.CLUSTER_NAME }}"  --role "Contributor"
 
       - name: Create Azure Federated Identity
-        uses: azure/CLI@v1.0.9
+        uses: azure/CLI@v2.0.0
         with:
           inlineScript: |
             AKS_OIDC_ISSUER="$(az aks show -n "${{ env.CLUSTER_NAME }}" -g "${{ env.CLUSTER_NAME }}" --query 'oidcIssuerProfile.issuerUrl' -otsv)"
@@ -201,7 +201,7 @@ jobs:
 
       - name: Cleanup e2e resources
         if: ${{ always() }}
-        uses: azure/CLI@v1.0.9
+        uses: azure/CLI@v2.0.0
         with:
           inlineScript: |
             set +e

From f904cac8467d592d5c88bf2dd2ed4e3e70163c29 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 13 May 2024 12:33:47 -0700
Subject: [PATCH 2/4] chore: bump docker/login-action from 3.0.0 to 3.1.0
 (#407)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps [docker/login-action](https://github.com/docker/login-action) from
3.0.0 to 3.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/docker/login-action/releases">docker/login-action's
releases</a>.</em></p>
<blockquote>
<h2>v3.1.0</h2>
<ul>
<li>build(deps): bump <code>@​babel/traverse</code> from 7.17.3 to
7.23.2 in <a
href="https://redirect.github.com/docker/login-action/pull/618">docker/login-action#618</a></li>
<li>build(deps): bump <code>@​docker/actions-toolkit</code> from 0.12.0
to 0.18.0 in <a
href="https://redirect.github.com/docker/login-action/pull/616">docker/login-action#616</a>
<a
href="https://redirect.github.com/docker/login-action/pull/636">docker/login-action#636</a>
<a
href="https://redirect.github.com/docker/login-action/pull/682">docker/login-action#682</a></li>
<li>build(deps): bump aws-sdk dependencies to 3.529.1 in <a
href="https://redirect.github.com/docker/login-action/pull/624">docker/login-action#624</a>
<a
href="https://redirect.github.com/docker/login-action/pull/685">docker/login-action#685</a></li>
<li>build(deps): bump http-proxy-agent to 7.0.2 in <a
href="https://redirect.github.com/docker/login-action/pull/676">docker/login-action#676</a></li>
<li>build(deps): bump https-proxy-agent to 7.0.4 in <a
href="https://redirect.github.com/docker/login-action/pull/676">docker/login-action#676</a></li>
<li>build(deps): bump undici from 5.26.5 to 5.28.3 in <a
href="https://redirect.github.com/docker/login-action/pull/677">docker/login-action#677</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/docker/login-action/compare/v3.0.0...v3.1.0">https://github.com/docker/login-action/compare/v3.0.0...v3.1.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/docker/login-action/commit/e92390c5fb421da1463c202d546fed0ec5c39f20"><code>e92390c</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/login-action/issues/685">#685</a>
from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...</li>
<li><a
href="https://github.com/docker/login-action/commit/1e752e229320282adbfff1151662f2da6f8d36eb"><code>1e752e2</code></a>
chore: update generated content</li>
<li><a
href="https://github.com/docker/login-action/commit/51c60978b0670a2f99afff797023b9368764b57b"><code>51c6097</code></a>
build(deps): bump the aws-sdk-dependencies group with 2 updates</li>
<li><a
href="https://github.com/docker/login-action/commit/8f079fbb6ceb0bb4780454e1c116409039395e98"><code>8f079fb</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/login-action/issues/676">#676</a>
from docker/dependabot/npm_and_yarn/proxy-agent-depen...</li>
<li><a
href="https://github.com/docker/login-action/commit/16fa7681c3a07f983f8e2f72d04ecc58c1877aca"><code>16fa768</code></a>
chore: update generated content</li>
<li><a
href="https://github.com/docker/login-action/commit/46d161922643adc000f0f387a72bdc0f31c1d420"><code>46d1619</code></a>
build(deps): bump the proxy-agent-dependencies group with 2 updates</li>
<li><a
href="https://github.com/docker/login-action/commit/8c291c5677d2cb612cd6cf4b48ae29dac82ee39f"><code>8c291c5</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/login-action/issues/682">#682</a>
from docker/dependabot/npm_and_yarn/docker/actions-to...</li>
<li><a
href="https://github.com/docker/login-action/commit/ec726f409deedb629ce3b576a3c78c4c85897811"><code>ec726f4</code></a>
build(deps): bump <code>@​docker/actions-toolkit</code> from 0.14.0 to
0.18.0</li>
<li><a
href="https://github.com/docker/login-action/commit/5139682d94efc37792e6b54386b5b470a68a4737"><code>5139682</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/login-action/issues/677">#677</a>
from docker/dependabot/npm_and_yarn/undici-5.28.3</li>
<li><a
href="https://github.com/docker/login-action/commit/6d4e2ba5df6bbe21cdb0807ac217d5a37e7c3630"><code>6d4e2ba</code></a>
chore: update generated content</li>
<li>Additional commits viewable in <a
href="https://github.com/docker/login-action/compare/343f7c4344506bcbf9b4de18042ae17996df046d...e92390c5fb421da1463c202d546fed0ec5c39f20">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/login-action&package-manager=github_actions&previous-version=3.0.0&new-version=3.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Heba <31887807+helayoty@users.noreply.github.com>
---
 .github/workflows/publish-gh-image.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/publish-gh-image.yml b/.github/workflows/publish-gh-image.yml
index 618e4b618..024caea44 100644
--- a/.github/workflows/publish-gh-image.yml
+++ b/.github/workflows/publish-gh-image.yml
@@ -87,7 +87,7 @@ jobs:
           ref: ${{ needs.check-tag.outputs.tag }}
 
       - name: Login to ${{ steps.get-registry.outputs.registry_repository }}
-        uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d
+        uses: docker/login-action@e92390c5fb421da1463c202d546fed0ec5c39f20
         with:
           registry: ${{ env.REGISTRY }}
           username: ${{ github.actor }}

From 56e297bb699a2120466174e05c7d3736ab44d9da Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 13 May 2024 13:02:34 -0700
Subject: [PATCH 3/4] chore: bump actions/checkout from 3.6.0 to 4.1.5 (#404)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps [actions/checkout](https://github.com/actions/checkout) from 3.6.0
to 4.1.5.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/checkout/releases">actions/checkout's
releases</a>.</em></p>
<blockquote>
<h2>v4.1.5</h2>
<h2>What's Changed</h2>
<ul>
<li>Update NPM dependencies by <a
href="https://github.com/cory-miller"><code>@​cory-miller</code></a> in
<a
href="https://redirect.github.com/actions/checkout/pull/1703">actions/checkout#1703</a></li>
<li>Bump github/codeql-action from 2 to 3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1694">actions/checkout#1694</a></li>
<li>Bump actions/setup-node from 1 to 4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1696">actions/checkout#1696</a></li>
<li>Bump actions/upload-artifact from 2 to 4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1695">actions/checkout#1695</a></li>
<li>README: Suggest <code>user.email</code> to be
<code>41898282+github-actions[bot]@users.noreply.github.com</code> by <a
href="https://github.com/cory-miller"><code>@​cory-miller</code></a> in
<a
href="https://redirect.github.com/actions/checkout/pull/1707">actions/checkout#1707</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/checkout/compare/v4.1.4...v4.1.5">https://github.com/actions/checkout/compare/v4.1.4...v4.1.5</a></p>
<h2>v4.1.4</h2>
<h2>What's Changed</h2>
<ul>
<li>Disable <code>extensions.worktreeConfig</code> when disabling
<code>sparse-checkout</code> by <a
href="https://github.com/jww3"><code>@​jww3</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1692">actions/checkout#1692</a></li>
<li>Add dependabot config by <a
href="https://github.com/cory-miller"><code>@​cory-miller</code></a> in
<a
href="https://redirect.github.com/actions/checkout/pull/1688">actions/checkout#1688</a></li>
<li>Bump word-wrap from 1.2.3 to 1.2.5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1643">actions/checkout#1643</a></li>
<li>Bump the minor-actions-dependencies group with 2 updates by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1693">actions/checkout#1693</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/checkout/compare/v4.1.3...v4.1.4">https://github.com/actions/checkout/compare/v4.1.3...v4.1.4</a></p>
<h2>v4.1.3</h2>
<h2>What's Changed</h2>
<ul>
<li>Update <code>actions/checkout</code> version in
<code>update-main-version.yml</code> by <a
href="https://github.com/jww3"><code>@​jww3</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1650">actions/checkout#1650</a></li>
<li>Check git version before attempting to disable
<code>sparse-checkout</code> by <a
href="https://github.com/jww3"><code>@​jww3</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1656">actions/checkout#1656</a></li>
<li>Add SSH user parameter by <a
href="https://github.com/cory-miller"><code>@​cory-miller</code></a> in
<a
href="https://redirect.github.com/actions/checkout/pull/1685">actions/checkout#1685</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/checkout/compare/v4.1.2...v4.1.3">https://github.com/actions/checkout/compare/v4.1.2...v4.1.3</a></p>
<h2>v4.1.2</h2>
<p>We are investigating the following issue with this release and have
rolled-back the <code>v4</code> tag to point to <code>v4.1.1</code></p>
<ul>
<li><code>sparse-checkout</code> is not available on git versions prior
to 2.27.0 (see <a
href="https://redirect.github.com/actions/checkout/issues/1651">actions/checkout#1651</a>)</li>
</ul>
<h2>What's Changed</h2>
<ul>
<li>Fix: Disable sparse checkout whenever <code>sparse-checkout</code>
option is not present <a
href="https://github.com/dscho"><code>@​dscho</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1598">actions/checkout#1598</a></li>
<li>Bump tough-cookie from 4.0.0 to 4.1.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1406">actions/checkout#1406</a></li>
<li>Bump <code>@​babel/traverse</code> from 7.20.5 to 7.24.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1642">actions/checkout#1642</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/jww3"><code>@​jww3</code></a> made their
first contribution in <a
href="https://redirect.github.com/actions/checkout/pull/1616">actions/checkout#1616</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/checkout/compare/v4.1.1...v4.1.2">https://github.com/actions/checkout/compare/v4.1.1...v4.1.2</a></p>
<h2>v4.1.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Update CODEOWNERS to Launch team by <a
href="https://github.com/joshmgross"><code>@​joshmgross</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1510">actions/checkout#1510</a></li>
<li>Correct link to GitHub Docs by <a
href="https://github.com/peterbe"><code>@​peterbe</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1511">actions/checkout#1511</a></li>
<li>Link to release page from what's new section by <a
href="https://github.com/cory-miller"><code>@​cory-miller</code></a> in
<a
href="https://redirect.github.com/actions/checkout/pull/1514">actions/checkout#1514</a></li>
</ul>
<h2>New Contributors</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/actions/checkout/commit/44c2b7a8a4ea60a981eaca3cf939b5f4305c123b"><code>44c2b7a</code></a>
README: Suggest <code>user.email</code> to be
`41898282+github-actions[bot]<a
href="https://github.com/users"><code>@​users</code></a>.norepl...</li>
<li><a
href="https://github.com/actions/checkout/commit/8459bc0c7e3759cdf591f513d9f141a95fef0a8f"><code>8459bc0</code></a>
Bump actions/upload-artifact from 2 to 4 (<a
href="https://redirect.github.com/actions/checkout/issues/1695">#1695</a>)</li>
<li><a
href="https://github.com/actions/checkout/commit/3f603f6d5e9f40714f97b2f017aa0df2a443192a"><code>3f603f6</code></a>
Bump actions/setup-node from 1 to 4 (<a
href="https://redirect.github.com/actions/checkout/issues/1696">#1696</a>)</li>
<li><a
href="https://github.com/actions/checkout/commit/fd084cde189b7b76ec305d52e27be545a0172823"><code>fd084cd</code></a>
Bump github/codeql-action from 2 to 3 (<a
href="https://redirect.github.com/actions/checkout/issues/1694">#1694</a>)</li>
<li><a
href="https://github.com/actions/checkout/commit/9c1e94e0ad997d618b6113a2171b055037589028"><code>9c1e94e</code></a>
Update NPM dependencies (<a
href="https://redirect.github.com/actions/checkout/issues/1703">#1703</a>)</li>
<li><a
href="https://github.com/actions/checkout/commit/0ad4b8fadaa221de15dcec353f45205ec38ea70b"><code>0ad4b8f</code></a>
Prep Release v4.1.4 (<a
href="https://redirect.github.com/actions/checkout/issues/1704">#1704</a>)</li>
<li><a
href="https://github.com/actions/checkout/commit/43045ae669be728bd34ed56fcd1a230c0dc4d8e2"><code>43045ae</code></a>
Disable <code>extensions.worktreeConfig</code> when disabling
<code>sparse-checkout</code> (<a
href="https://redirect.github.com/actions/checkout/issues/1692">#1692</a>)</li>
<li><a
href="https://github.com/actions/checkout/commit/37b082107ba410260a3aaddf93122e04801ce631"><code>37b0821</code></a>
Bump the minor-actions-dependencies group with 2 updates (<a
href="https://redirect.github.com/actions/checkout/issues/1693">#1693</a>)</li>
<li><a
href="https://github.com/actions/checkout/commit/9839dc14a02ddc6b6995e69eb3ecb98132fc8b6b"><code>9839dc1</code></a>
Add dependabot config (<a
href="https://redirect.github.com/actions/checkout/issues/1688">#1688</a>)</li>
<li><a
href="https://github.com/actions/checkout/commit/9b4c13b0bfa31b4514c14f74b5a166c2708f43c6"><code>9b4c13b</code></a>
Bump word-wrap from 1.2.3 to 1.2.5 (<a
href="https://redirect.github.com/actions/checkout/issues/1643">#1643</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/actions/checkout/compare/v3.6.0...v4.1.5">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/checkout&package-manager=github_actions&previous-version=3.6.0&new-version=4.1.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Heba <31887807+helayoty@users.noreply.github.com>
---
 .github/workflows/codeql.yml              | 2 +-
 .github/workflows/create-release.yml      | 2 +-
 .github/workflows/dependency-review.yml   | 2 +-
 .github/workflows/e2e-preset-test.yml     | 4 ++--
 .github/workflows/e2e-workflow.yml        | 2 +-
 .github/workflows/helm-chart.yml          | 2 +-
 .github/workflows/lint-go.yml             | 2 +-
 .github/workflows/markdown-link-check.yml | 2 +-
 .github/workflows/preset-image-build.yml  | 4 ++--
 .github/workflows/publish-gh-image.yml    | 4 ++--
 .github/workflows/publish-mcr-image.yml   | 2 +-
 .github/workflows/tests.yml               | 2 +-
 12 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 08ba2aa34..48ee5bdf8 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -27,7 +27,7 @@ jobs:
           egress-policy: audit
 
       - name: Checkout repository
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5
         with:
           submodules: true
           fetch-depth: 0
diff --git a/.github/workflows/create-release.yml b/.github/workflows/create-release.yml
index 95f6b98b4..276d62518 100644
--- a/.github/workflows/create-release.yml
+++ b/.github/workflows/create-release.yml
@@ -26,7 +26,7 @@ jobs:
           go-version: ${{ env.GO_VERSION  }}
 
       - name: Checkout the repository at the given SHA from the artifact
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5
         with:
           submodules: true
           fetch-depth: 0
diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml
index 3f3456223..028b26f7e 100644
--- a/.github/workflows/dependency-review.yml
+++ b/.github/workflows/dependency-review.yml
@@ -22,6 +22,6 @@ jobs:
           egress-policy: audit
 
       - name: 'Checkout Repository'
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@0efb1d1d84fc9633afcdaad14c485cbbc90ef46c # v2.5.1
diff --git a/.github/workflows/e2e-preset-test.yml b/.github/workflows/e2e-preset-test.yml
index 0cb8c302d..40bede239 100644
--- a/.github/workflows/e2e-preset-test.yml
+++ b/.github/workflows/e2e-preset-test.yml
@@ -37,7 +37,7 @@ jobs:
       full_matrix: ${{ steps.images.outputs.full_matrix }}
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5
         with:
           submodules: true
           fetch-depth: 0
@@ -106,7 +106,7 @@ jobs:
         model: ${{fromJson(needs.determine-models.outputs.full_matrix)}}
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@v4.1.5
         with:
             submodules: true
             fetch-depth: 0
diff --git a/.github/workflows/e2e-workflow.yml b/.github/workflows/e2e-workflow.yml
index 40081a344..f12dd07e4 100644
--- a/.github/workflows/e2e-workflow.yml
+++ b/.github/workflows/e2e-workflow.yml
@@ -54,7 +54,7 @@ jobs:
           egress-policy: audit
 
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5
         with:
           ref: ${{ inputs.git_sha }}
 
diff --git a/.github/workflows/helm-chart.yml b/.github/workflows/helm-chart.yml
index 05e06123e..596bf1203 100644
--- a/.github/workflows/helm-chart.yml
+++ b/.github/workflows/helm-chart.yml
@@ -22,7 +22,7 @@ jobs:
           egress-policy: audit
 
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5
         with:
           submodules: true
           fetch-depth: 0
diff --git a/.github/workflows/lint-go.yml b/.github/workflows/lint-go.yml
index 3170149c7..5bc0b869b 100644
--- a/.github/workflows/lint-go.yml
+++ b/.github/workflows/lint-go.yml
@@ -29,7 +29,7 @@ jobs:
         with:
           egress-policy: audit
 
-      - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+      - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5
         with:
           submodules: true
           fetch-depth: 0
diff --git a/.github/workflows/markdown-link-check.yml b/.github/workflows/markdown-link-check.yml
index 2fb144a3e..9bd119dc4 100644
--- a/.github/workflows/markdown-link-check.yml
+++ b/.github/workflows/markdown-link-check.yml
@@ -18,7 +18,7 @@ jobs:
         with:
           egress-policy: audit
 
-      - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+      - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5
       - uses: gaurav-nelson/github-action-markdown-link-check@5c5dfc0ac2e225883c0e5f03a85311ec2830d368 # v1
         with:
           # this will only show errors in the output
diff --git a/.github/workflows/preset-image-build.yml b/.github/workflows/preset-image-build.yml
index 32bdb7145..375bc0f33 100644
--- a/.github/workflows/preset-image-build.yml
+++ b/.github/workflows/preset-image-build.yml
@@ -41,7 +41,7 @@ jobs:
       is_matrix_empty: ${{ steps.check_matrix_empty.outputs.is_empty }}
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5
         with:
           submodules: true
           fetch-depth: 0
@@ -82,7 +82,7 @@ jobs:
       max-parallel: 3
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5
         with:
           submodules: true
           fetch-depth: 0
diff --git a/.github/workflows/publish-gh-image.yml b/.github/workflows/publish-gh-image.yml
index 024caea44..debba3686 100644
--- a/.github/workflows/publish-gh-image.yml
+++ b/.github/workflows/publish-gh-image.yml
@@ -38,7 +38,7 @@ jobs:
           egress-policy: audit
 
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5
         with:
           fetch-depth: 0
 
@@ -80,7 +80,7 @@ jobs:
         run: |
           echo "IMG_TAG=$(echo ${{ needs.check-tag.outputs.tag }} | tr -d v)" >> $GITHUB_ENV
 
-      - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+      - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5
         with:
           submodules: true
           fetch-depth: 0
diff --git a/.github/workflows/publish-mcr-image.yml b/.github/workflows/publish-mcr-image.yml
index c7a565375..078e1f59b 100644
--- a/.github/workflows/publish-mcr-image.yml
+++ b/.github/workflows/publish-mcr-image.yml
@@ -27,7 +27,7 @@ jobs:
           ver=${{ github.event.client_payload.tag }}
           echo "IMG_TAG=${ver#"v"}" >> $GITHUB_ENV
 
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v4.1.5
         with:
           fetch-depth: 0
           submodules: true
diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml
index 46eedd3ec..7b4a18aca 100644
--- a/.github/workflows/tests.yml
+++ b/.github/workflows/tests.yml
@@ -30,7 +30,7 @@ jobs:
           egress-policy: audit
 
       - name: Check out the code
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5
         with:
           submodules: true
           fetch-depth: 0

From 19c93d6833e7b341465de81d88624420ab0688da Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 13 May 2024 13:33:54 -0700
Subject: [PATCH 4/4] chore: bump codecov/codecov-action from 4.1.0 to 4.3.1
 (#405)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps
[codecov/codecov-action](https://github.com/codecov/codecov-action) from
4.1.0 to 4.3.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's
releases</a>.</em></p>
<blockquote>
<h2>v4.3.1</h2>
<h2>What's Changed</h2>
<ul>
<li>build(deps-dev): bump typescript from 5.4.4 to 5.4.5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1370">codecov/codecov-action#1370</a></li>
<li>fix: more verbose log message when failing to import pgp key by <a
href="https://github.com/ReenigneArcher"><code>@​ReenigneArcher</code></a>
in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1371">codecov/codecov-action#1371</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 7.6.0 to 7.7.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1374">codecov/codecov-action#1374</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from
7.6.0 to 7.7.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1375">codecov/codecov-action#1375</a></li>
<li>build(deps): bump actions/checkout from 4.1.2 to 4.1.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1382">codecov/codecov-action#1382</a></li>
<li>build(deps): bump github/codeql-action from 3.24.10 to 3.25.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1381">codecov/codecov-action#1381</a></li>
<li>build(deps): bump actions/upload-artifact from 4.3.1 to 4.3.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1380">codecov/codecov-action#1380</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from
7.7.0 to 7.7.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1384">codecov/codecov-action#1384</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 7.7.0 to 7.7.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1383">codecov/codecov-action#1383</a></li>
<li>Update README.md to point to docs about tokenless by <a
href="https://github.com/rohan-at-sentry"><code>@​rohan-at-sentry</code></a>
in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1395">codecov/codecov-action#1395</a></li>
<li>build(deps): bump actions/upload-artifact from 4.3.2 to 4.3.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1393">codecov/codecov-action#1393</a></li>
<li>build(deps): bump actions/checkout from 4.1.3 to 4.1.4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1392">codecov/codecov-action#1392</a></li>
<li>build(deps): bump github/codeql-action from 3.25.1 to 3.25.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1391">codecov/codecov-action#1391</a></li>
<li>style: Node Packages by <a
href="https://github.com/marcobiedermann"><code>@​marcobiedermann</code></a>
in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1394">codecov/codecov-action#1394</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 7.7.1 to 7.8.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1402">codecov/codecov-action#1402</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from
7.7.1 to 7.8.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1401">codecov/codecov-action#1401</a></li>
<li>docs: Type Annotations by <a
href="https://github.com/marcobiedermann"><code>@​marcobiedermann</code></a>
in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1397">codecov/codecov-action#1397</a></li>
<li>docs: main branch by <a
href="https://github.com/marcobiedermann"><code>@​marcobiedermann</code></a>
in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1396">codecov/codecov-action#1396</a></li>
<li>fix: bypass token checks for forks and OIDC by <a
href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a>
in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1404">codecov/codecov-action#1404</a></li>
<li>chore(release): 4.3.1. by <a
href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a>
in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1405">codecov/codecov-action#1405</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/ReenigneArcher"><code>@​ReenigneArcher</code></a>
made their first contribution in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1371">codecov/codecov-action#1371</a></li>
<li><a
href="https://github.com/rohan-at-sentry"><code>@​rohan-at-sentry</code></a>
made their first contribution in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1395">codecov/codecov-action#1395</a></li>
<li><a
href="https://github.com/marcobiedermann"><code>@​marcobiedermann</code></a>
made their first contribution in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1394">codecov/codecov-action#1394</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/codecov/codecov-action/compare/v4.3.0...v4.3.1">https://github.com/codecov/codecov-action/compare/v4.3.0...v4.3.1</a></p>
<h2>v4.3.0</h2>
<h2>What's Changed</h2>
<ul>
<li>fix: automatically detect if using GitHub enterprise by <a
href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a>
in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1356">codecov/codecov-action#1356</a></li>
<li>build(deps-dev): bump typescript from 5.4.3 to 5.4.4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1355">codecov/codecov-action#1355</a></li>
<li>build(deps): bump github/codeql-action from 3.24.9 to 3.24.10 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1360">codecov/codecov-action#1360</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 7.5.0 to 7.6.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1364">codecov/codecov-action#1364</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from
7.5.0 to 7.6.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1363">codecov/codecov-action#1363</a></li>
<li>feat: add network params by <a
href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a>
in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1365">codecov/codecov-action#1365</a></li>
<li>build(deps): bump undici from 5.28.3 to 5.28.4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1361">codecov/codecov-action#1361</a></li>
<li>chore(release): v4.3.0 by <a
href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a>
in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1366">codecov/codecov-action#1366</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/codecov/codecov-action/compare/v4.2.0...v4.3.0">https://github.com/codecov/codecov-action/compare/v4.2.0...v4.3.0</a></p>
<h2>v4.2.0</h2>
<h2>What's Changed</h2>
<ul>
<li>chore(deps): update deps by <a
href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a>
in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1351">codecov/codecov-action#1351</a></li>
<li>feat: allow for authentication via OIDC token by <a
href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a>
in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1330">codecov/codecov-action#1330</a></li>
<li>fix: use_oidc shoudl be required false by <a
href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a>
in <a
href="https://redirect.github.com/codecov/codecov-action/pull/1353">codecov/codecov-action#1353</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/codecov/codecov-action/commit/5ecb98a3c6b747ed38dc09f787459979aebb39be"><code>5ecb98a</code></a>
chore(release): 4.3.1. (<a
href="https://redirect.github.com/codecov/codecov-action/issues/1405">#1405</a>)</li>
<li><a
href="https://github.com/codecov/codecov-action/commit/5a299d112764f1181e7036d1a605319e188a6517"><code>5a299d1</code></a>
fix: bypass token checks for forks and OIDC (<a
href="https://redirect.github.com/codecov/codecov-action/issues/1404">#1404</a>)</li>
<li><a
href="https://github.com/codecov/codecov-action/commit/dad251dcaf4fdaa10dfaa1c32aab58f9cb23a448"><code>dad251d</code></a>
docs: main branch (<a
href="https://redirect.github.com/codecov/codecov-action/issues/1396">#1396</a>)</li>
<li><a
href="https://github.com/codecov/codecov-action/commit/e8bbe5fc01acf74b16947d15244887621348ed9e"><code>e8bbe5f</code></a>
docs: Type Annotations (<a
href="https://redirect.github.com/codecov/codecov-action/issues/1397">#1397</a>)</li>
<li><a
href="https://github.com/codecov/codecov-action/commit/a6fd87fc19554cd650dff59f3cb2adfb84100930"><code>a6fd87f</code></a>
build(deps-dev): bump <code>@​typescript-eslint/parser</code> from 7.7.1
to 7.8.0 (<a
href="https://redirect.github.com/codecov/codecov-action/issues/1401">#1401</a>)</li>
<li><a
href="https://github.com/codecov/codecov-action/commit/76c8cd61636cf9ba2d0d172a9ae4a3e486c7e380"><code>76c8cd6</code></a>
build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 7.7.1 to 7.8.0 (#...</li>
<li><a
href="https://github.com/codecov/codecov-action/commit/1290bddc8851afa46a03b9a73dd9979a415d4c4f"><code>1290bdd</code></a>
style: Node Packages (<a
href="https://redirect.github.com/codecov/codecov-action/issues/1394">#1394</a>)</li>
<li><a
href="https://github.com/codecov/codecov-action/commit/951ef79006b612f0de66054318b25a95de33191c"><code>951ef79</code></a>
build(deps): bump github/codeql-action from 3.25.1 to 3.25.3 (<a
href="https://redirect.github.com/codecov/codecov-action/issues/1391">#1391</a>)</li>
<li><a
href="https://github.com/codecov/codecov-action/commit/bb71c1ba2fc25bcfc44953687c1ee272cce124ac"><code>bb71c1b</code></a>
build(deps): bump actions/checkout from 4.1.3 to 4.1.4 (<a
href="https://redirect.github.com/codecov/codecov-action/issues/1392">#1392</a>)</li>
<li><a
href="https://github.com/codecov/codecov-action/commit/acc5d43cad0293ef04b50f6923a5381b1e4bb0e7"><code>acc5d43</code></a>
build(deps): bump actions/upload-artifact from 4.3.2 to 4.3.3 (<a
href="https://redirect.github.com/codecov/codecov-action/issues/1393">#1393</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/codecov/codecov-action/compare/54bcd8715eee62d40e33596ef5e8f0f48dbbccab...5ecb98a3c6b747ed38dc09f787459979aebb39be">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=4.1.0&new-version=4.3.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Heba <31887807+helayoty@users.noreply.github.com>
---
 .github/workflows/tests.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml
index 7b4a18aca..581420f17 100644
--- a/.github/workflows/tests.yml
+++ b/.github/workflows/tests.yml
@@ -49,7 +49,7 @@ jobs:
           make inference-api-e2e
 
       - name: Upload Codecov report
-        uses: codecov/codecov-action@54bcd8715eee62d40e33596ef5e8f0f48dbbccab # v4.1.0
+        uses: codecov/codecov-action@5ecb98a3c6b747ed38dc09f787459979aebb39be # v4.3.1
         with:
           ## Comma-separated list of files to upload
           files: ./coverage.txt