build(deps): bump pexip/shared-github-actions from 2e66b267fba3099dedb01447d9e2bd688dfc85ea to 66e44e9a31b868ddc0830d26a61745ea59b2dba4

[dependabot]

Bumps pexip/shared-github-actions from 2e66b267fba3099dedb01447d9e2bd688dfc85ea to 66e44e9a31b868ddc0830d26a61745ea59b2dba4.

Commits

• 66e44e9 Update job summary header in action.yml for improved readability
• 239dc2e Update summary output format in action.yml for clarity
• 630b734 Update primary image extraction and summary output in action.yml
• 284a309 Add step to extract primary image tag in action.yml
• 6a360fe Add skip-dirs option and pin trivy version in action.yml
• 067eff6 Pin version of trivy to use to v0.67.0
• 44e1b2b Add skip-dirs option for Terraform in action.yml
• 2c0603b Fix path resolution for PR comment script in deploy action.yml (#42)
• 0cef10a Remove unnecessary permissions section from release workflow
• 59edcea Habakke/enhance actions (#41)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: ci, dependencies. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[github-actions]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ✅ 0 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ⚠️ 1 package(s) with unknown licenses.

See the Details below.

License Issues

.github/workflows/release.yml

Package	Version	License	Issue Type
pexip/shared-github-actions/.github/actions/release	66e44e9a31b868ddc0830d26a61745ea59b2dba4	Null	Unknown License

Allowed Licenses: MIT, Apache-2.0, BSD-2-Clause, BSD-3-Clause, ISC

OpenSSF Scorecard

Package	Version	Score	Details
actions/pexip/shared-github-actions/.github/actions/release	66e44e9a31b868ddc0830d26a61745ea59b2dba4	Unknown	Unknown

Scanned Files

• .github/workflows/release.yml

[dependabot]

Superseded by #40.