Bump actions/dependency-review-action from 3.1.3 to 3.1.4

[dependabot]

Bumps actions/dependency-review-action from 3.1.3 to 3.1.4.

Release notes

Sourced from actions/dependency-review-action's releases.

3.1.4

What's Changed

• Fixed a bug with severity filtering when using the allow_ghsas option: actions/dependency-review-action#623.

• Updates dependencies:

  • Bump @​types/node from 16.18.61 to 16.18.62 by @​dependabot in actions/dependency-review-action#619 action/pull/620
  • Bump @​typescript-eslint/eslint-plugin from 6.11.0 to 6.12.0 by @​dependabot in actions/dependency-review-action#625
  • Bump typescript from 5.2.2 to 5.3.2 by @​dependabot in actions/dependency-review-action#624

Full Changelog: actions/dependency-review-action@v3...v3.1.4

Commits

• 01bc870 bumping version
• 4b4f0de Merge pull request #623 from actions/fix-advisory-filters
• a93fa86 Fixing test name.
• 550520e Merge pull request #624 from actions/dependabot/npm_and_yarn/typescript-5.3.2
• 2d0fb60 Merge pull request #625 from actions/dependabot/npm_and_yarn/typescript-eslin...
• c07c237 Bump @​typescript-eslint/eslint-plugin from 6.11.0 to 6.12.0
• 4d842d7 Bump typescript from 5.2.2 to 5.3.2
• a6d4686 adding dist
• 4366dba Advisory filters should not drop entire dependencies.
• 50dafeb Tiny logic refactor.
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Comparison is base (ad52e78) 52.06% compared to head (49bd41b) 52.06%.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #4715   +/-   ##
=======================================
  Coverage   52.06%   52.06%           
=======================================
  Files          59       59           
  Lines       17033    17033           
=======================================
  Hits         8869     8869           
  Misses       7864     7864           
  Partials      300      300           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[dependabot]

Looks like actions/dependency-review-action is up-to-date now, so this is no longer needed.