chore(deps): bump the github_action group with 3 updates

[dependabot[bot]]

Bumps the github_action group with 3 updates: actions/github-script, ArtiomTr/jest-coverage-report-action and guardian/actions-riff-raff.

Updates actions/github-script from 6 to 7

Release notes

Sourced from actions/github-script's releases.

v7.0.0

What's Changed

• Add base-url option by @​robandpdx in actions/github-script#429
• Expose async-function argument type by @​viktorlott in actions/github-script#402, see for details https://github.com/actions/github-script#use-scripts-with-jsdoc-support
• Update dependencies and use Node 20 by @​joshmgross in actions/github-script#425

New Contributors

• @​navarroaxel made their first contribution in actions/github-script#285
• @​robandpdx made their first contribution in actions/github-script#429
• @​viktorlott made their first contribution in actions/github-script#402

Full Changelog: https://github.com/actions/github-script/compare/v6.4.1...v7.0.0

v6.4.1

What's Changed

• Add @​octokit/plugin-request-log, to produce debug output for requests by @​mjpieters in actions/github-script#358
• fix input handling by @​mjpieters in actions/github-script#357
• Remove unused dependencies by @​mjpieters in actions/github-script#356
• Default debug to current runner debug state by @​mjpieters in actions/github-script#363

New Contributors

• @​mjpieters made their first contribution in actions/github-script#358

Full Changelog: https://github.com/actions/github-script/compare/v6.4.0...v6.4.1

v6.4.0

What's Changed

• Bump json5 from 2.1.3 to 2.2.3 by @​dependabot in actions/github-script#319
• Bump minimatch from 3.0.4 to 3.1.2 by @​dependabot in actions/github-script#320
• Add node-fetch by @​danmichaelo in actions/github-script#321

New Contributors

• @​jongwooo made their first contribution in actions/github-script#313
• @​austinvazquez made their first contribution in actions/github-script#306
• @​danmichaelo made their first contribution in actions/github-script#321

Full Changelog: https://github.com/actions/github-script/compare/v6.3.3...v6.4.0

v6.3.3

What's Changed

• Update @actions/glob to 0.3.0 by @​nineinchnick in actions/github-script#279

New Contributors

• @​nineinchnick made their first contribution in actions/github-script#279

Full Changelog: https://github.com/actions/github-script/compare/v6.3.2...v6.3.3

v6.3.2

What's Changed

• Update @​actions/core to 1.10.0 by @​rentziass in actions/github-script#295

... (truncated)

Commits

• 60a0d83 Merge pull request #440 from actions/joshmgross/v7.0.1
• b7fb200 Update version to 7.0.1
• 12e22ed Merge pull request #439 from actions/joshmgross/avoid-setting-base-url
• d319f8f Avoid setting baseUrl to undefined when input is not provided
• e69ef54 Merge pull request #425 from actions/joshmgross/node-20
• ee0914b Update licenses
• d6fc56f Use @types/node for Node 20
• 384d6cf Fix quotations in tests
• 8472492 Only validate GraphQL previews
• 84903f5 Remove node-fetch from type
• Additional commits viewable in compare view

Updates ArtiomTr/jest-coverage-report-action from 2.2.6 to 2.3.0

Release notes

Sourced from ArtiomTr/jest-coverage-report-action's releases.

v2.3.0

Changes

• Show nice error on tests failure (#416) @​ArtiomTr

📰 Documentation

• Updated image assets in readme (#417) @​ArtiomTr

v2.2.9

Changes

• Mark test run check as succeded (#415) @​ArtiomTr

v2.2.8

Changes

• Do not add double hyphens for pnpm >= 7.0.0 (#413) @​ArtiomTr

v2.2.7

Changes

• Compact markdown tables to avoid GitHub comment limit (#412) @​ArtiomTr

Commits

• c026e98 Updated image assets in readme (#417)
• be13608 Build 2024-03-03 16:44:49
• 5038cb5 Show nice error on tests failure (#416)
• b44de20 Build 2024-03-03 15:26:36
• 161d4bf Mark test run check as succeded (#415)
• c53be46 Build 2024-03-03 12:30:24
• 37e417f Do not add double hyphens for pnpm >= 7.0.0 (#413)
• 4532b54 Build 2024-03-03 11:54:14
• 11039f5 Compact markdown tables to avoid GitHub comment limit (#412)
• See full diff in compare view

Updates guardian/actions-riff-raff from 3 to 4

Release notes

Sourced from guardian/actions-riff-raff's releases.

v4

Breaking changes

• A roleArn input now needs to be passed into the action, so that it can assume the role to upload to Riff-Raff guardian/actions-riff-raff#108. This removes the need to use the aws-configure-credentials action in previous steps of the workflow.

What's Changed

• chore(deps): bump @​aws-sdk/client-s3 from 3.462.0 to 3.484.0 by @​dependabot in guardian/actions-riff-raff#96
• chore(deps-dev): bump @​types/node from 20.10.1 to 20.10.6 by @​dependabot in guardian/actions-riff-raff#97
• chore(deps): bump esbuild from 0.19.8 to 0.19.11 by @​dependabot in guardian/actions-riff-raff#98
• chore(deps-dev): bump @​guardian/prettier from 5.0.0 to 7.0.0 by @​dependabot in guardian/actions-riff-raff#99
• chore(deps): bump @​aws-sdk/client-s3 from 3.484.0 to 3.504.0 by @​dependabot in guardian/actions-riff-raff#102
• chore(deps-dev): bump @​types/node from 20.10.6 to 20.11.14 by @​dependabot in guardian/actions-riff-raff#104
• chore(deps): bump esbuild from 0.19.11 to 0.20.0 by @​dependabot in guardian/actions-riff-raff#105
• chore(deps-dev): bump @​guardian/prettier from 7.0.0 to 8.0.0 by @​dependabot in guardian/actions-riff-raff#103
• chore(deps): bump @​aws-sdk/client-s3 from 3.504.0 to 3.509.0 by @​dependabot in guardian/actions-riff-raff#106
• chore(deps-dev): bump @​types/node from 20.11.14 to 20.11.17 by @​dependabot in guardian/actions-riff-raff#107
• Assume Riff-Raff role within the action itself by @​AshCorr @​chrislomaxjones in guardian/actions-riff-raff#108

New Contributors

• @​chrislomaxjones made their first contribution in guardian/actions-riff-raff#108

Full Changelog: https://github.com/guardian/actions-riff-raff/compare/v3...v4

v3.3.2

What's Changed

• fix(commenting): Update all comments created by actions-riff-raff by @​akash1810 in guardian/actions-riff-raff#95

Full Changelog: https://github.com/guardian/actions-riff-raff/compare/v3.3.1...v3.3.2

v3.3.1

What's Changed

• fix: Use commit sha to identify PR number by @​akash1810 in guardian/actions-riff-raff#94

Full Changelog: https://github.com/guardian/actions-riff-raff/compare/v3.3.0...v3.3.1

v3.3.0

What's Changed

• chore(deps): bump @​aws-sdk/client-s3 from 3.441.0 to 3.462.0 by @​dependabot in guardian/actions-riff-raff#92
• chore(deps): bump esbuild from 0.19.5 to 0.19.8 by @​dependabot in guardian/actions-riff-raff#91
• chore(deps-dev): bump @​types/node from 20.8.10 to 20.10.1 by @​dependabot in guardian/actions-riff-raff#90
• chore(deps-dev): bump @​types/js-yaml from 4.0.8 to 4.0.9 by @​dependabot in guardian/actions-riff-raff#89
• feat: Add a link to understand what's currently deployed by @​akash1810 in guardian/actions-riff-raff#93

Full Changelog: https://github.com/guardian/actions-riff-raff/compare/v3.2.0...v3.3.0

v3.2.0

What's Changed

• feat: Support repositories with multiple Riff-Raff projects by @​akash1810 in guardian/actions-riff-raff#88

... (truncated)

Commits

• 32f6dd8 Merge pull request #108 from guardian/mob/AssumeRoleWithWebIdentity
• e9c90bd Throw error if roleArn is missing
• 5bca0d4 Actually fix tests
• 2879309 Fix tests
• bfd092d Get ID token and roleArn early in the action to fail fast
• 6d0d135 Update the README to reflect v4 changes
• 69fb70e Use AssumeRoleWithWebIdentity to get AWS S3 credentials instead of a seperate...
• 8d7305b chore(deps-dev): bump @​types/node from 20.11.14 to 20.11.17
• ee69fe0 chore(deps): bump @​aws-sdk/client-s3 from 3.504.0 to 3.509.0
• 6ee359f chore(deps-dev): bump @​guardian/prettier from 7.0.0 to 8.0.0
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions