From b4baebe18e4246166fa7b4b8b4da2557fb2d6f9d Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 9 Dec 2024 08:26:59 -0500
Subject: [PATCH] [dependabot] Bump GitHub actions with 3 updates (#3243)

* Updates `actions/cache` from 4.1.2 to 4.2.0
* Updates `github/codeql-action` from 3.27.1 to 3.27.6
* Updates `actions/dependency-review-action` from 4.4.0 to 4.5.0

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/build-and-test.yml    | 2 +-
 .github/workflows/codacy.yml            | 2 +-
 .github/workflows/dash.yml              | 2 +-
 .github/workflows/dependency-review.yml | 2 +-
 .github/workflows/integration-tests.yml | 2 +-
 .github/workflows/javadocs.yml          | 2 +-
 .github/workflows/main-build.yml        | 4 ++--
 .github/workflows/scorecard.yml         | 2 +-
 .github/workflows/unit-tests.yml        | 2 +-
 9 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/.github/workflows/build-and-test.yml b/.github/workflows/build-and-test.yml
index a8c62960d8f5..3a87c63b8c9a 100644
--- a/.github/workflows/build-and-test.yml
+++ b/.github/workflows/build-and-test.yml
@@ -23,7 +23,7 @@ jobs:
         with:
           distribution: 'temurin'
           java-version: '11'
-      - uses: actions/cache@6849a6489940f00c2f30c0fb92c6274307ccb58a # v4.1.2
+      - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
         with:
           key: ${{ hashFiles('**/pom.xml') }}-compile-${{ inputs.scala-version }}
           path: |
diff --git a/.github/workflows/codacy.yml b/.github/workflows/codacy.yml
index 4162257d8c5e..cf0614846ecd 100644
--- a/.github/workflows/codacy.yml
+++ b/.github/workflows/codacy.yml
@@ -72,7 +72,7 @@ jobs:
 
       # Upload the SARIF file generated in the previous step
       - name: Upload SARIF results file
-        uses: github/codeql-action/upload-sarif@4f3212b61783c3c68e8309a0f18a699764811cda # v3.27.1
+        uses: github/codeql-action/upload-sarif@aa578102511db1f4524ed59b8cc2bae4f6e88195 # v3.27.6
         with:
           sarif_file: results.sarif
           category: codacy-${{ matrix.tool }}
diff --git a/.github/workflows/dash.yml b/.github/workflows/dash.yml
index b8879a9b3120..3784258dce94 100644
--- a/.github/workflows/dash.yml
+++ b/.github/workflows/dash.yml
@@ -23,7 +23,7 @@ jobs:
         with:
           distribution: 'temurin'
           java-version: '11'
-      - uses: actions/cache@6849a6489940f00c2f30c0fb92c6274307ccb58a # v4.1.2
+      - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
         with:
           key: ${{ hashFiles('**/pom.xml') }}-dash-${{ inputs.scala-version }}
           path: ~/.m2/repository/
diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml
index 2a80d7401445..a3d6202d156b 100644
--- a/.github/workflows/dependency-review.yml
+++ b/.github/workflows/dependency-review.yml
@@ -19,4 +19,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@4081bf99e2866ebe428fc0477b69eb4fcda7220a # v4.4.0
+        uses: actions/dependency-review-action@3b139cfc5fae8b618d3eae3675e383bb1769c019 # v4.5.0
diff --git a/.github/workflows/integration-tests.yml b/.github/workflows/integration-tests.yml
index ae6b0803763e..4b76bdf9b686 100644
--- a/.github/workflows/integration-tests.yml
+++ b/.github/workflows/integration-tests.yml
@@ -23,7 +23,7 @@ jobs:
         with:
           distribution: 'temurin'
           java-version: '11'
-      - uses: actions/cache@6849a6489940f00c2f30c0fb92c6274307ccb58a # v4.1.2
+      - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
         with:
           key: ${{ hashFiles('**/pom.xml') }}-it-${{ inputs.scala-version }}
           path: ~/.m2/repository/
diff --git a/.github/workflows/javadocs.yml b/.github/workflows/javadocs.yml
index 7cfb29afbc5c..2778f210b12c 100644
--- a/.github/workflows/javadocs.yml
+++ b/.github/workflows/javadocs.yml
@@ -23,7 +23,7 @@ jobs:
         with:
           distribution: 'temurin'
           java-version: '11'
-      - uses: actions/cache@6849a6489940f00c2f30c0fb92c6274307ccb58a # v4.1.2
+      - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
         with:
           key: ${{ hashFiles('**/pom.xml') }}-javadocs-${{ inputs.scala-version }}
           path: ~/.m2/repository/
diff --git a/.github/workflows/main-build.yml b/.github/workflows/main-build.yml
index fb7f556c0596..7bea051526dc 100644
--- a/.github/workflows/main-build.yml
+++ b/.github/workflows/main-build.yml
@@ -32,7 +32,7 @@ jobs:
         with:
           distribution: 'temurin'
           java-version: '11'
-      - uses: actions/cache@6849a6489940f00c2f30c0fb92c6274307ccb58a # v4.1.2
+      - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
         with:
           key: ${{ hashFiles('**/pom.xml') }}-docs
           path: ~/.m2/repository/
@@ -56,7 +56,7 @@ jobs:
         with:
           distribution: 'temurin'
           java-version: '11'
-      - uses: actions/cache@6849a6489940f00c2f30c0fb92c6274307ccb58a # v4.1.2
+      - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
         with:
           key: ${{ hashFiles('**/pom.xml') }}-license-header-check
           path: ~/.m2/repository/
diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
index 973930358af0..10fd124a8e4b 100644
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@@ -67,6 +67,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@4f3212b61783c3c68e8309a0f18a699764811cda # v3.27.1
+        uses: github/codeql-action/upload-sarif@aa578102511db1f4524ed59b8cc2bae4f6e88195 # v3.27.6
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/unit-tests.yml b/.github/workflows/unit-tests.yml
index 13d55eee59a7..e2b02b9a8f56 100644
--- a/.github/workflows/unit-tests.yml
+++ b/.github/workflows/unit-tests.yml
@@ -30,7 +30,7 @@ jobs:
         env:
           MOD_SELECTOR: "${{ inputs.module-selector }}"
         run: echo "MOD_SELECTOR=$(echo $MOD_SELECTOR | sed 's/[^a-zA-Z0-9_.-]/-/g')" >> $GITHUB_ENV
-      - uses: actions/cache@6849a6489940f00c2f30c0fb92c6274307ccb58a # v4.1.2
+      - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
         with:
           key: ${{ hashFiles('**/pom.xml') }}-unit-tests-${{ inputs.scala-version }}-${{ env.MOD_SELECTOR }}
           path: ~/.m2/repository/