Update GitHub Action returntocorp/semgrep to v1.97.0

[hash-worker]

This PR contains the following updates:

Package	Type	Update	Change
returntocorp/semgrep	container	minor	1.96.0 -> 1.97.0

---

Release Notes

semgrep/semgrep (returntocorp/semgrep)

v1.97.0

Compare Source

Added

• Improved logic for interfile analysis in TypeScript projects using
  project references. (code-7677)
• Semgrep Pro engine now resolves method invocations on abstract classes. In
  addition to the existing resolution for interface method invocations, this
  change further enhances dataflow tracking accuracy for dynamic method
  invocations. (code-7750)
• Added the ability to validate temporary AWS tokens in the secrets product. (gh-2554)
• Poetry.lock & Pyproject.toml parsers can now handle multiline strings. (ssc-1942)

Fixed

• Improved error handling for some networking errors (e.g., premature server
  disconnection). In some cases this would previously cause a fatal error, but we
  should instead be able to recover in most instances (and now can). (code-7715)
• Target file selection in git projects: files containing special characters
  (according to git) are now scanned correctly instead of being ignored. (saf-1687)
• Swift: Ellipses and metavariable ellipses can now be used as function parameters in patterns. (saf-1721)
• Semgrep will no longer freeze when tracing is enabled and it has a low memory limit (saf-1722)
• osemgrep-pro: Autofix and nosemgrep now work properly (saf-1724)

---

Configuration

📅 Schedule: Branch creation - "before 2am on saturday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 21.93%. Comparing base (c77d47b) to head (28a78e8).
Report is 15 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #5716      +/-   ##
==========================================
+ Coverage   19.55%   21.93%   +2.37%     
==========================================
  Files         522      552      +30     
  Lines       17576    18537     +961     
  Branches     2592     2651      +59     
==========================================
+ Hits         3437     4066     +629     
- Misses      14101    14429     +328     
- Partials       38       42       +4     

Flag	Coverage Δ
apps.hash-ai-worker-ts	1.32% <ø> (ø)
apps.hash-api	1.16% <ø> (ø)
blockprotocol.type-system	46.42% <ø> (-0.98%)	⬇️
local.harpc-client	65.69% <ø> (?)
local.hash-backend-utils	8.80% <ø> (ø)
local.hash-graph-sdk	100.00% <ø> (ø)
local.hash-isomorphic-utils	1.04% <ø> (ø)
local.hash-subgraph	24.54% <ø> (ø)
rust.deer	6.66% <ø> (ø)
rust.error-stack	72.51% <ø> (ø)
rust.sarif	87.66% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

---

🚨 Try these New Features:

• Flaky Tests Detection - Detect and resolve failed and flaky tests
• JS Bundle Analysis - Avoid shipping oversized bundles

[github-actions]

Benchmark results

@rust/hash-graph-benches – Integrations

representative_read_entity

Function	Value	Mean	Flame graphs
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/playlist/v/1	$$15.8 \mathrm{ms} \pm 167 \mathrm{μs}\left({\color{gray}-4.618 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/page/v/2	$$16.0 \mathrm{ms} \pm 173 \mathrm{μs}\left({\color{gray}0.247 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/person/v/1	$$16.6 \mathrm{ms} \pm 174 \mathrm{μs}\left({\color{gray}3.78 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/organization/v/1	$$17.0 \mathrm{ms} \pm 174 \mathrm{μs}\left({\color{red}5.67 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/uk-address/v/1	$$16.8 \mathrm{ms} \pm 194 \mathrm{μs}\left({\color{gray}2.71 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/song/v/1	$$16.6 \mathrm{ms} \pm 152 \mathrm{μs}\left({\color{gray}4.84 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/block/v/1	$$15.6 \mathrm{ms} \pm 154 \mathrm{μs}\left({\color{gray}1.11 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/book/v/1	$$16.0 \mathrm{ms} \pm 168 \mathrm{μs}\left({\color{gray}-1.229 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/building/v/1	$$16.5 \mathrm{ms} \pm 211 \mathrm{μs}\left({\color{gray}3.50 \mathrm{\%}}\right) $$	Flame Graph

representative_read_multiple_entities

Function	Value	Mean	Flame graphs
entity_by_property	depths: DT=255, PT=255, ET=255, E=255	$$67.7 \mathrm{ms} \pm 426 \mathrm{μs}\left({\color{gray}0.839 \mathrm{\%}}\right) $$	Flame Graph
entity_by_property	depths: DT=0, PT=0, ET=0, E=0	$$38.6 \mathrm{ms} \pm 144 \mathrm{μs}\left({\color{gray}0.237 \mathrm{\%}}\right) $$	Flame Graph
entity_by_property	depths: DT=2, PT=2, ET=2, E=2	$$57.4 \mathrm{ms} \pm 336 \mathrm{μs}\left({\color{gray}0.072 \mathrm{\%}}\right) $$	Flame Graph
entity_by_property	depths: DT=0, PT=0, ET=0, E=2	$$42.8 \mathrm{ms} \pm 219 \mathrm{μs}\left({\color{gray}0.499 \mathrm{\%}}\right) $$	Flame Graph
entity_by_property	depths: DT=0, PT=0, ET=2, E=2	$$48.1 \mathrm{ms} \pm 197 \mathrm{μs}\left({\color{gray}-0.277 \mathrm{\%}}\right) $$	Flame Graph
entity_by_property	depths: DT=0, PT=2, ET=2, E=2	$$52.9 \mathrm{ms} \pm 276 \mathrm{μs}\left({\color{gray}0.014 \mathrm{\%}}\right) $$	Flame Graph
link_by_source_by_property	depths: DT=255, PT=255, ET=255, E=255	$$106 \mathrm{ms} \pm 390 \mathrm{μs}\left({\color{gray}-0.110 \mathrm{\%}}\right) $$	Flame Graph
link_by_source_by_property	depths: DT=0, PT=0, ET=0, E=0	$$41.0 \mathrm{ms} \pm 127 \mathrm{μs}\left({\color{gray}-0.470 \mathrm{\%}}\right) $$	Flame Graph
link_by_source_by_property	depths: DT=2, PT=2, ET=2, E=2	$$96.0 \mathrm{ms} \pm 434 \mathrm{μs}\left({\color{gray}-0.550 \mathrm{\%}}\right) $$	Flame Graph
link_by_source_by_property	depths: DT=0, PT=0, ET=0, E=2	$$78.6 \mathrm{ms} \pm 448 \mathrm{μs}\left({\color{gray}-0.173 \mathrm{\%}}\right) $$	Flame Graph
link_by_source_by_property	depths: DT=0, PT=0, ET=2, E=2	$$87.6 \mathrm{ms} \pm 253 \mathrm{μs}\left({\color{gray}-0.794 \mathrm{\%}}\right) $$	Flame Graph
link_by_source_by_property	depths: DT=0, PT=2, ET=2, E=2	$$91.2 \mathrm{ms} \pm 401 \mathrm{μs}\left({\color{gray}-1.135 \mathrm{\%}}\right) $$	Flame Graph

representative_read_entity_type

Function	Value	Mean	Flame graphs
get_entity_type_by_id	Account ID: d4e16033-c281-4cde-aa35-9085bf2e7579	$$1.38 \mathrm{ms} \pm 5.04 \mathrm{μs}\left({\color{gray}0.561 \mathrm{\%}}\right) $$	Flame Graph

scaling_read_entity_complete_one_depth

Function	Value	Mean	Flame graphs
entity_by_id	50 entities	$$255 \mathrm{ms} \pm 1.43 \mathrm{ms}\left({\color{gray}-0.283 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	5 entities	$$25.5 \mathrm{ms} \pm 203 \mathrm{μs}\left({\color{gray}2.41 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	1 entities	$$20.0 \mathrm{ms} \pm 57.0 \mathrm{μs}\left({\color{gray}1.43 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	10 entities	$$45.9 \mathrm{ms} \pm 2.60 \mathrm{ms}\left({\color{lightgreen}-10.352 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	25 entities	$$70.1 \mathrm{ms} \pm 361 \mathrm{μs}\left({\color{gray}-2.311 \mathrm{\%}}\right) $$	Flame Graph

scaling_read_entity_linkless

Function	Value	Mean	Flame graphs
entity_by_id	1 entities	$$1.86 \mathrm{ms} \pm 6.83 \mathrm{μs}\left({\color{gray}1.05 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	100 entities	$$2.03 \mathrm{ms} \pm 7.34 \mathrm{μs}\left({\color{gray}-0.948 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	10 entities	$$1.90 \mathrm{ms} \pm 4.68 \mathrm{μs}\left({\color{gray}-0.414 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	1000 entities	$$2.87 \mathrm{ms} \pm 16.4 \mathrm{μs}\left({\color{gray}3.27 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	10000 entities	$$13.4 \mathrm{ms} \pm 44.1 \mathrm{μs}\left({\color{gray}-0.546 \mathrm{\%}}\right) $$	Flame Graph

scaling_read_entity_complete_zero_depth

Function	Value	Mean	Flame graphs
entity_by_id	50 entities	$$4.17 \mathrm{ms} \pm 20.3 \mathrm{μs}\left({\color{gray}-0.437 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	5 entities	$$1.89 \mathrm{ms} \pm 4.95 \mathrm{μs}\left({\color{gray}0.482 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	1 entities	$$1.87 \mathrm{ms} \pm 6.83 \mathrm{μs}\left({\color{gray}0.456 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	10 entities	$$2.08 \mathrm{ms} \pm 16.0 \mathrm{μs}\left({\color{gray}0.069 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	25 entities	$$2.73 \mathrm{ms} \pm 14.2 \mathrm{μs}\left({\color{lightgreen}-17.076 \mathrm{\%}}\right) $$	Flame Graph