chore(deps): bump tar from 7.5.10 to 7.5.11

Bumps [tar](https://github.com/isaacs/node-tar) from 7.5.10 to 7.5.11. - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](https://github.com/isaacs/node-tar/compare/v7.5.10...v7.5.11) --- updated-dependencies: - dependency-name: tar dependency-version: 7.5.11 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
chore(actions): update ivuorinen/actions action to v2026.03.10 (#487 )
2026-03-12 01:58:19 +00:00 · 2026-03-11 21:30:07 +00:00 · 2026-03-11 01:36:04 +02:00 · 2026-03-07 17:49:19 +02:00
6 changed files with 18 additions and 35 deletions
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -1,51 +1,34 @@
 ---
 # yaml-language-server: $schema=https://json.schemastore.org/github-workflow.json
-name: 'CodeQL Advanced'
+name: "CodeQL"

 on:
  push:
-    branches: ['main']
+    branches: ["main"]
  pull_request:
-    branches: ['main']
+    branches: ["main"]
  schedule:
-    - cron: '30 1 * * 0' # Run at 1:30 AM UTC every Sunday
+    - cron: "30 1 * * 0"
  merge_group:

-permissions:
-  actions: read
-  contents: read
+permissions: {}

 jobs:
  analyze:
-    name: Analyze (${{ matrix.language }})
+    name: Analyze
    runs-on: ubuntu-latest
    permissions:
      actions: read
      contents: read
-      security-events: write
      packages: read
-
+      security-events: write
    strategy:
      fail-fast: false
      matrix:
-        include:
-          - language: actions
-            build-mode: none
-          - language: javascript-typescript
-            build-mode: none
-
+        language: ["actions", "javascript"]
    steps:
-      - name: Checkout repository
-        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
-      - name: Initialize CodeQL
-        uses: github/codeql-action/init@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
+      - name: CodeQL Analysis
+        uses: ivuorinen/actions/codeql-analysis@9b5ae9da1b4cb135aee0ca52403e3924fba6e84f # v2026.03.10
        with:
-          languages: ${{ matrix.language }}
-          build-mode: ${{ matrix.build-mode }}
+          language: ${{ matrix.language }}
          queries: security-and-quality
-
-      - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
-        with:
-          category: '/language:${{matrix.language}}'
--- a/.github/workflows/pr-lint.yml
+++ b/.github/workflows/pr-lint.yml
@@ -49,7 +49,7 @@ jobs:

      - name: Run PR Lint
        # https://github.com/ivuorinen/actions
-        uses: ivuorinen/actions/pr-lint@d1af04260d903f572ee953cc790ff7c1410709a6 # v2026.03.05
+        uses: ivuorinen/actions/pr-lint@9b5ae9da1b4cb135aee0ca52403e3924fba6e84f # v2026.03.10
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
          NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
--- a/.github/workflows/publish.yml
+++ b/.github/workflows/publish.yml
@@ -27,7 +27,7 @@ jobs:
    steps:
      - name: Run PR Lint
        # https://github.com/ivuorinen/actions
-        uses: ivuorinen/actions/pr-lint@d1af04260d903f572ee953cc790ff7c1410709a6 # v2026.03.05
+        uses: ivuorinen/actions/pr-lint@9b5ae9da1b4cb135aee0ca52403e3924fba6e84f # v2026.03.10

  publish:
    name: Publish
--- a/.github/workflows/stale.yml
+++ b/.github/workflows/stale.yml
@@ -23,4 +23,4 @@ jobs:
      issues: write
      pull-requests: write
    steps:
-      - uses: ivuorinen/actions/stale@d1af04260d903f572ee953cc790ff7c1410709a6 # v2026.03.05
+      - uses: ivuorinen/actions/stale@9b5ae9da1b4cb135aee0ca52403e3924fba6e84f # v2026.03.10
--- a/.github/workflows/sync-labels.yml
+++ b/.github/workflows/sync-labels.yml
@@ -39,4 +39,4 @@ jobs:
        with:
          token: ${{ secrets.GITHUB_TOKEN }}
      - name: ⤵️ Sync Latest Labels Definitions
-        uses: ivuorinen/actions/sync-labels@d1af04260d903f572ee953cc790ff7c1410709a6 # v2026.03.05
+        uses: ivuorinen/actions/sync-labels@9b5ae9da1b4cb135aee0ca52403e3924fba6e84f # v2026.03.10
--- a/yarn.lock
+++ b/yarn.lock
@@ -7820,15 +7820,15 @@ __metadata:
  linkType: hard

 "tar@npm:^7.4.3, tar@npm:^7.5.1, tar@npm:^7.5.4, tar@npm:^7.5.9":
-  version: 7.5.10
-  resolution: "tar@npm:7.5.10"
+  version: 7.5.11
+  resolution: "tar@npm:7.5.11"
  dependencies:
    "@isaacs/fs-minipass": "npm:^4.0.0"
    chownr: "npm:^3.0.0"
    minipass: "npm:^7.1.2"
    minizlib: "npm:^3.1.0"
    yallist: "npm:^5.0.0"
-  checksum: 10c0/ed905e4b33886377df6e9206e5d1bd34458c21666e27943f946799416f86348c938590d573d6a69312cb29c583b122647a64ec92782f2b7e24e68d985dd72531
+  checksum: 10c0/b6bb420550ef50ef23356018155e956cd83282c97b6128d8d5cfe5740c57582d806a244b2ef0bf686a74ce526babe8b8b9061527623e935e850008d86d838929
  languageName: node
  linkType: hard