build(deps): bump github.com/rhysd/actionlint from 1.6.25 to 1.6.26

[dependabot]

Bumps github.com/rhysd/actionlint from 1.6.25 to 1.6.26.

Release notes

Sourced from github.com/rhysd/actionlint's releases.

v1.6.26

• Several template fields and template actions were added. All fields and actions are listed in the document. Please read it for more details. (#311)
  • By these additions, now actionlint can output the result in the SARIF format. SARIF is a format for the output of static analysis tools used by GitHub CodeQL. the example Go template to format actionlint output in SARIF.

    actionlint -format "$(cat /path/to/sarif_template.txt)" > output.json

  • allKinds returns the kinds (lint rules) information as an array. You can include what lint rules are defined in the command output.
  • toPascalCase converts snake case (foo_bar) or kebab case (foo-bar) into pascal case (FooBar).
• Report an error when the condition at if: is always evaluated to true. See the check document to know more details. (#272)

  # ERROR: All the following `if:` conditions are always evaluated to true
  - run: echo 'Commit is pushed'
    if: |
      ${{ github.event_name == 'push' }}
  - run: echo 'Commit is pushed'
    if: "${{ github.event_name == 'push' }} "
  - run: echo 'Commit is pushed to main'
    if: ${{ github.event_name == 'push' }} && ${{ github.ref_name == 'main' }}

• Fix actionlint didn't understand ${{ }} placeholders in environment variable names. (#312)

  env:
    "${{ steps.x.outputs.value }}": "..."

• Fix type of matrix row when some expression is assigned to it with ${{ }} (#285)

  strategy:
    matrix:
      test:
        # Matrix rows are assigned from JSON string
        - ${{ fromJson(inputs.matrix) }}
  steps:
    - run: echo ${{ matrix.test.foo.bar }}

• Fix checking exclude of matrix was incorrect when some matrix row is dynamically constructed with ${{ }}. (#261)

  strategy:
    matrix:
      build-type:
        - debug
        - ${{ fromJson(inputs.custom-build-type) }}
      exclude:
        # 'release' is not listed in 'build-type' row, but it should not be reported as error
        # since the second row of 'build-type' is dynamically constructed with ${{ }}.
        - build-type: release

• Fix checking exclude of matrix was incorrect when object is nested at row of the matrix. (#249)

  matrix:
    os:

... (truncated)

Changelog

Sourced from github.com/rhysd/actionlint's changelog.

v1.6.26 - 18 Sep 2023

• Several template fields and template actions were added. All fields and actions are listed in the document. Please read it for more details. (#311)
  • By these additions, now actionlint can output the result in the SARIF format. SARIF is a format for the output of static analysis tools used by GitHub CodeQL. the example Go template to format actionlint output in SARIF.

    actionlint -format "$(cat /path/to/sarif_template.txt)" > output.json

  • allKinds returns the kinds (lint rules) information as an array. You can include what lint rules are defined in the command output.
  • toPascalCase converts snake case (foo_bar) or kebab case (foo-bar) into pascal case (FooBar).
• Report an error when the condition at if: is always evaluated to true. See the check document to know more details. (#272)

  # ERROR: All the following `if:` conditions are always evaluated to true
  - run: echo 'Commit is pushed'
    if: |
      ${{ github.event_name == 'push' }}
  - run: echo 'Commit is pushed'
    if: "${{ github.event_name == 'push' }} "
  - run: echo 'Commit is pushed to main'
    if: ${{ github.event_name == 'push' }} && ${{ github.ref_name == 'main' }}

• Fix actionlint didn't understand ${{ }} placeholders in environment variable names. (#312)

  env:
    "${{ steps.x.outputs.value }}": "..."

• Fix type of matrix row when some expression is assigned to it with ${{ }} (#285)

  strategy:
    matrix:
      test:
        # Matrix rows are assigned from JSON string
        - ${{ fromJson(inputs.matrix) }}
  steps:
    - run: echo ${{ matrix.test.foo.bar }}

• Fix checking exclude of matrix was incorrect when some matrix row is dynamically constructed with ${{ }}. (#261)

  strategy:
    matrix:
      build-type:
        - debug
        - ${{ fromJson(inputs.custom-build-type) }}
      exclude:
        # 'release' is not listed in 'build-type' row, but it should not be reported as error
        # since the second row of 'build-type' is dynamically constructed with ${{ }}.
        - build-type: release

• Fix checking exclude of matrix was incorrect when object is nested at row of the matrix. (#249)

  matrix:

... (truncated)

Commits

• ea81027 bump up version to v1.6.26
• 4c4dd40 update Go dependencies to the latest
• 9ef152c use Go 1.21 by default on CI
• 7e38a88 update popular actions data set to the latest
• 0a86b35 Merge pull request #339 from asml-mdroogle/mdroogle-secret-source
• 0c6f98e add action/checkout@v4 to popular actions data set
• d0b9589 cleanup Makefile
• 6476e79 update popular actions
• f1d4095 Merge pull request #344 from rhysd/ci/5908695077
• 9939d17 update generated files by go generate on CI
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

Merging #2026 (534e53e) into master (4989f44) will increase coverage by 0.86%.
Report is 244 commits behind head on master.
The diff coverage is 61.96%.

@@            Coverage Diff             @@
##           master    #2026      +/-   ##
==========================================
+ Coverage   61.22%   62.08%   +0.86%     
==========================================
  Files          46       52       +6     
  Lines        7141     8488    +1347     
==========================================
+ Hits         4372     5270     +898     
- Misses       2462     2798     +336     
- Partials      307      420     +113     

Files Changed	Coverage Δ
pkg/common/outbound_ip.go	0.00% <0.00%> (ø)
pkg/container/docker_cli.go	82.23% <ø> (ø)
pkg/container/docker_logger.go	52.08% <ø> (ø)
pkg/container/docker_volume.go	0.00% <0.00%> (ø)
pkg/container/file_collector.go	39.68% <0.00%> (+2.38%)	⬆️
pkg/container/host_environment.go	0.00% <0.00%> (ø)
...ontainer/linux_container_environment_extensions.go	23.07% <0.00%> (-1.25%)	⬇️
pkg/container/util.go	0.00% <0.00%> (ø)
pkg/exprparser/functions.go	66.32% <0.00%> (-1.04%)	⬇️
pkg/model/action.go	0.00% <0.00%> (ø)
... and 30 more

... and 2 files with indirect coverage changes

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

[github-actions]

🦙 MegaLinter status: ✅ SUCCESS

Descriptor	Linter	Files	Fixed	Errors	Elapsed time
✅ EDITORCONFIG	editorconfig-checker	2		0	0.01s
✅ REPOSITORY	gitleaks	yes		no	3.6s
✅ REPOSITORY	git_diff	yes		no	0.23s
✅ REPOSITORY	grype	yes		no	10.58s
✅ REPOSITORY	secretlint	yes		no	1.28s
✅ REPOSITORY	trivy-sbom	yes		no	0.78s
✅ REPOSITORY	trufflehog	yes		no	27.83s

See detailed report in MegaLinter reports
Set VALIDATE_ALL_CODEBASE: true in mega-linter.yml to validate all sources, not only the diff

MegaLinter is graciously provided by