Bump guardian/actions-riff-raff from 2 to 3

[dependabot]

Bumps guardian/actions-riff-raff from 2 to 3.

Release notes

Sourced from guardian/actions-riff-raff's releases.

v3.0.0

3.0.0 (2023-11-20)

• Add a pull request comment with quick links to deploy with Riff-Raff (#85)

BREAKING CHANGES

A new required input githubToken has been added. This needs to be scoped with pull-requests: write permission.

Before (v2)

jobs:
  CI:
    timeout-minutes: 15
    runs-on: ubuntu-latest
    steps:
      - uses: guardian/actions-riff-raff@v2
        with:
          projectName: playground::my-application
          configPath: riff-raff.yaml
          contentDirectories: |
            static-site-assets:
              - static-site/dist
            api:
              - target/application.jar

After (v3)

jobs:
  CI:
    timeout-minutes: 15
    runs-on: ubuntu-latest
    permissions: 
      pull-requests: write # <- NEW!
    steps:
      - uses: guardian/actions-riff-raff@v3 # Note the version change
        with:
          githubToken: ${{ secrets.GITHUB_TOKEN }} # <- NEW!
          projectName: playground::my-application
          configPath: riff-raff.yaml
          contentDirectories: |
            static-site-assets:
              - static-site/dist
            api:
              - target/application.jar

v2.2.4

What's Changed

• Run action with Node 20 by @​georgeblahblah in guardian/actions-riff-raff#78

... (truncated)

Commits

• bbfa351 Merge pull request #85 from guardian/aa/pr-comment
• 65d6c91 fix: githubToken is required
• adbca41 fix: Fail fast if githubToken not supplied
• 34464fc docs: Use v3 in README
• 58eb555 refactor: Don't import twice
• 97d69f3 refactor: Remove redundant argument to getOctokit
• 5d2b4cc refactor: Rename variable for clarity
• 8a0175b refactor: Make commentOnPullRequest more single responsibility
• 8583175 refactor: Simplify check for pull request
• 28c5955 docs: Document inputs for PR commenting
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.