chore: pin actions to v2.1.0 SHA

[devantler]

Pin all devantler-tech/actions workflow callsites to the latest semver release SHA:
4235593b654b467bb57c2d2f492b1461eab37cba (v2.1.0).

Fixes N/A

Type of change

EOF- [ ] - [ ] - [ ] - [ ] - [x]

[Copilot]

Pull request overview

Pins all devantler-tech/actions usages in this repository’s GitHub workflows to the v2.1.0 release commit SHA (4235593b654b467bb57c2d2f492b1461eab37cba), aligning with the repo’s “pin actions to SHAs” supply-chain security convention.

Changes:

• Update TODO issue creation workflow to use devantler-tech/actions/create-issues-from-todos@4235593… (v2.1.0).
• Update .NET test workflow to use devantler-tech/actions/run-dotnet-tests@4235593… (v2.1.0).
• Update auto-merge workflow to use approve-pr and enable-auto-merge-on-pr at 4235593… (v2.1.0).
• Update label sync workflow to use sync-github-labels@4235593… (v2.1.0).

Reviewed changes

Copilot reviewed 4 out of 4 changed files in this pull request and generated no comments.

File	Description
.github/workflows/scan-for-todo-comments.yaml	Pins the TODO-to-issue action callsite to v2.1.0 SHA.
.github/workflows/run-dotnet-tests.yaml	Pins the .NET test action callsite to v2.1.0 SHA.
.github/workflows/enable-auto-merge.yaml	Pins auto-merge related action callsites to v2.1.0 SHA.
.github/workflows/.sync-labels.yaml	Pins the label sync action callsite to v2.1.0 SHA.

[github-actions]

✅MegaLinter analysis: Success

Descriptor	Linter	Files	Fixed	Errors	Warnings	Elapsed time
✅ ACTION	actionlint	15		0	0	0.12s
✅ COPYPASTE	jscpd	yes		no	no	1.64s
✅ JSON	jsonlint	2		0	0	0.42s
✅ JSON	prettier	2	0	0	0	0.74s
✅ JSON	v8r	2		0	0	6.22s
✅ MARKDOWN	markdownlint	2	0	0	0	1.03s
✅ MARKDOWN	markdown-table-formatter	2	0	0	0	0.24s
✅ REPOSITORY	checkov	yes		no	no	19.47s
✅ REPOSITORY	gitleaks	yes		no	no	0.19s
✅ REPOSITORY	git_diff	yes		no	no	0.01s
✅ REPOSITORY	grype	yes		no	no	39.69s
✅ REPOSITORY	secretlint	yes		no	no	0.53s
✅ REPOSITORY	syft	yes		no	no	1.74s
✅ REPOSITORY	trivy	yes		no	no	12.11s
✅ REPOSITORY	trivy-sbom	yes		no	no	0.16s
✅ REPOSITORY	trufflehog	yes		no	no	3.72s
✅ SPELL	lychee	26		0	0	1.71s
✅ YAML	prettier	22	0	0	0	0.97s
✅ YAML	v8r	22		0	0	9.91s
✅ YAML	yamllint	22		0	0	0.69s

See detailed reports in MegaLinter artifacts

Your project could benefit from a custom flavor, which would allow you to run only the linters you need, and thus improve runtime performances. (Skip this info by defining FLAVOR_SUGGESTIONS: false)

• Documentation: Custom Flavors
• Command: npx mega-linter-runner@9.4.0 --custom-flavor-setup --custom-flavor-linters ACTION_ACTIONLINT,COPYPASTE_JSCPD,JSON_JSONLINT,JSON_V8R,JSON_PRETTIER,MARKDOWN_MARKDOWNLINT,MARKDOWN_MARKDOWN_TABLE_FORMATTER,REPOSITORY_CHECKOV,REPOSITORY_GIT_DIFF,REPOSITORY_GITLEAKS,REPOSITORY_GRYPE,REPOSITORY_SECRETLINT,REPOSITORY_SYFT,REPOSITORY_TRIVY,REPOSITORY_TRIVY_SBOM,REPOSITORY_TRUFFLEHOG,SPELL_LYCHEE,YAML_PRETTIER,YAML_YAMLLINT,YAML_V8R

Show us your support by starring ⭐ the repository

[botantler]

🎉 This PR is included in version 2.3.1 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀