Bump the actions group across 1 directory with 3 updates

[dependabot]

Bumps the actions group with 3 updates in the / directory: mikefarah/yq, actions/setup-python and docker/build-push-action.

Updates mikefarah/yq from 4.45.1 to 4.45.2

Release notes

Sourced from mikefarah/yq's releases.

v4.45.2

• Added windows arm builds (Thanks @​albertocavalcante, @​ShukantPal)
• Added s390x platform support (Thanks @​ashokpariya0)
• Additionally push docker images to ghcr.io (Thanks @​reegnz)
• Fixing add when there is no node match #2325
• sort_by works on maps
• Bumped dependencies

Changelog

Sourced from mikefarah/yq's changelog.

4.45.2:

• Added windows arm builds (Thanks @​albertocavalcante, @​ShukantPal)
• Added s390x platform support (Thanks @​ashokpariya0)
• Additionally push docker images to ghcr.io (Thanks @​reegnz)
• Fixing add when there is no node match #2325
• sort_by works on maps
• Bumped dependencies

Commits

• c59fa8d Bumping version
• ef8b520 Updating release notes
• 20b5129 Updating golanglint
• 89518a0 Bumping golint
• d01ac78 Regen doc
• 67520b5 Adding windows arm build #2344
• 7b6e61b Update README.md
• cf8621d Install to /usr/local in README install instruction
• 340b897 Bump github.com/spf13/cobra from 1.8.1 to 1.9.1
• 4155c99 Typo in cats example
• Additional commits viewable in compare view

Updates actions/setup-python from 5.5.0 to 5.6.0

Release notes

Sourced from actions/setup-python's releases.

v5.6.0

What's Changed

• Workflow updates related to Ubuntu 20.04 by @​aparnajyothi-y in actions/setup-python#1065
• Fix for Candidate Not Iterable Error by @​aparnajyothi-y in actions/setup-python#1082
• Upgrade semver and @​types/semver by @​dependabot in actions/setup-python#1091
• Upgrade prettier from 2.8.8 to 3.5.3 by @​dependabot in actions/setup-python#1046
• Upgrade ts-jest from 29.1.2 to 29.3.2 by @​dependabot in actions/setup-python#1081

Full Changelog: actions/setup-python@v5...v5.6.0

Commits

• a26af69 Bump ts-jest from 29.1.2 to 29.3.2 (#1081)
• 30eafe9 Bump prettier from 2.8.8 to 3.5.3 (#1046)
• 5d95bc1 Bump semver and @​types/semver (#1091)
• 6ed2c67 Fix for Candidate Not Iterable Error (#1082)
• e348410 Remove Ubuntu 20.04 from workflows due to deprecation from 2025-04-15 (#1065)
• See full diff in compare view

Updates docker/build-push-action from 6.15.0 to 6.16.0

Release notes

Sourced from docker/build-push-action's releases.

v6.16.0

• Handle no default attestations env var by @​crazy-max in docker/build-push-action#1343
• Only print secret keys in build summary output by @​crazy-max in docker/build-push-action#1353
• Bump @​docker/actions-toolkit from 0.56.0 to 0.59.0 in docker/build-push-action#1352

Full Changelog: docker/build-push-action@v6.15.0...v6.16.0

Commits

• 14487ce Merge pull request #1343 from crazy-max/fix-no-default-attest
• 0ec9126 Merge pull request #1366 from crazy-max/pr-assign-author
• b749522 pr-assign-author workflow
• c566248 Merge pull request #1363 from crazy-max/fix-codecov
• 13275dd ci: fix missing source for codecov
• 67dc78b Merge pull request #1361 from mschoettle/patch-1
• 0760504 docs: add validating build configuration example
• 1c198f4 chore: update generated content
• 288d9e2 handle no default attestations env var
• 88844b9 Merge pull request #1353 from crazy-max/summary-secret-keys
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: github-actions. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.