chore(deps): bump ossf/scorecard-action from 2.0.3 to 2.0.4

[dependabot]

Bumps ossf/scorecard-action from 2.0.3 to 2.0.4.

Commits

• e363bfc Bump docker to next release. (#952)
• 65d491b 🌱 Bump codecov/codecov-action from 3.1.0 to 3.1.1
• f60b7d6 🌱 Bump github/codeql-action from 2.1.24 to 2.1.25
• be7ddf6 🌱 Bump github.com/sigstore/cosign from 1.12.0 to 1.12.1
• 9a2bfd4 🌱 Bump actions/dependency-review-action from 2.1.0 to 2.4.0 (#950)
• a346ade 🐛 Restore behavior of ignoring scorecard runtime errors (#948)
• 2db2a1c 🌱 Bump github/codeql-action from 2.1.22 to 2.1.24 (#941)
• c858631 🌱 Bump github.com/sigstore/cosign from 1.11.1 to 1.12.0 (#938)
• 8ee777f 🌱 Bump debian from 11.4-slim to 11.5-slim (#936)
• 6213479 feat: do not run signing on pull requests (#935)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

Merging #7898 (1981ebc) into main (290280e) will decrease coverage by 3.83%.
The diff coverage is 53.94%.

@@            Coverage Diff             @@
##             main    #7898      +/-   ##
==========================================
- Coverage   70.48%   66.65%   -3.84%     
==========================================
  Files         515      593      +78     
  Lines       23150    28698    +5548     
==========================================
+ Hits        16317    19128    +2811     
- Misses       5776     8161    +2385     
- Partials     1057     1409     +352     

Impacted Files	Coverage Δ
cmd/skaffold/app/cmd/credits/export.go	0.00% <0.00%> (ø)
cmd/skaffold/app/cmd/deploy.go	40.90% <0.00%> (-12.94%)	⬇️
cmd/skaffold/app/cmd/test.go	44.44% <0.00%> (ø)
cmd/skaffold/skaffold.go	0.00% <0.00%> (ø)
cmd/skaffold/app/cmd/inspect_tests.go	62.50% <14.28%> (-1.14%)	⬇️
cmd/skaffold/app/cmd/render.go	35.48% <18.18%> (-5.90%)	⬇️
cmd/skaffold/app/cmd/lsp.go	28.12% <28.12%> (ø)
cmd/skaffold/app/cmd/run.go	64.28% <33.33%> (-9.63%)	⬇️
cmd/skaffold/app/cmd/fix.go	56.41% <37.50%> (-20.07%)	⬇️
cmd/skaffold/app/cmd/verify.go	41.17% <41.17%> (ø)
... and 364 more

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more