build(deps): bump release-drafter/release-drafter from 7.2.0 to 7.2.1

[dependabot]

Bumps release-drafter/release-drafter from 7.2.0 to 7.2.1.

Release notes

Sourced from release-drafter/release-drafter's releases.

v7.2.1

What's Changed

Bug Fixes

• fix: initial-commits-since in config not overwritten by input (#1593) @​sroebert
• fix: clarify prerelease-identifier behavior and precedence in configuration (#1594) @​neilime

Maintenance

• chore: disable "No version input..." warning (#1595) @​cchanche

Full Changelog: release-drafter/release-drafter@v7.2.0...v7.2.1

Commits

• 563bf13 chore: release v7.2.1
• ecce383 fix: initial-commits-since in config not overwritten by input (#1593)
• cc3030e chore: disable "No version input..." warning (#1595)
• 56443b6 fix: prerelease-identifier behavior and precedence in configuration (#1594)
• dfb8288 ci: upgrade actions/download and upload artifacts
• c72a4c8 chore: update dist
• d31f18e ci: Use native Actions checks instead of manual statuses for coverage report
• 8a1e7e7 chore: replace coverage badge with job summary and commit status
• 36c42fa chore: use semantic commit for npm version and push only version tag
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

Snapshot Warnings

⚠️: No snapshots were found for the head SHA af88cf6.

Ensure that dependencies are being submitted on PR branches and consider enabling retry-on-snapshot-warnings. See the documentation for more information and troubleshooting advice.

OpenSSF Scorecard

Package	Version	Score	Details
actions/release-drafter/release-drafter	563bf132657a13ded0b01fcb723c5a58cdd824e2	🟢 4.5	Details Check Score Reason Code-Review ⚠️ 1 Found 3/18 approved changesets -- score normalized to 1 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Maintained 🟢 10 30 commit(s) and 27 issue activity found in the last 90 days -- score normalized to 10 Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy ⚠️ 0 security policy file not detected License 🟢 10 license file detected Fuzzing ⚠️ 0 project is not fuzzed Signed-Releases ⚠️ -1 no releases found SAST 🟢 9 SAST tool detected but not run on all commits Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches

Scanned Files

• .github/workflows/release.yml

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud