[Repo Assist] chore(deps): bundle Dependabot updates — trusted-signing-action v2, gh-aw-actions 0.74.4

🤖 *This PR was created by Repo Assist, an automated AI assistant.*

## Summary

Bundles two open Dependabot PRs into a single update to reduce reviewer overhead. Both are minor/non-breaking CI action version bumps.

| Dependency | From | To | Dependabot PR |
|---|---|---|---|
| `azure/trusted-signing-action` | v1 | v2 | #445 |
| `github/gh-aw-actions` | 0.72.1 | 0.74.4 | #446 |

After merging this PR, maintainers can close #445 and #446.

## Changes

- `.github/workflows/ci.yml`: update 5 uses of `azure/trusted-signing-action` from `v1` → `v2`
- `.github/workflows/copilot-setup-steps.yml`, `localization-audit.lock.yml`, `repo-assist.lock.yml`: update `github/gh-aw-actions` SHA pin from 0.72.1 → 0.74.4

## Test Status

CI workflow changes only — no application code changed. These are action version updates that will be exercised by CI on this PR.

---

> [!WARNING]
> **Protected Files**
>
> This was originally intended as a pull request, but the patch modifies protected files. These files may affect project dependencies, CI/CD pipelines, or agent behaviour. **Please review the changes carefully** before creating the pull request.
>
> **[Click here to create the pull request once you have reviewed the changes](https://github.com/openclaw/openclaw-windows-node/compare/master...repo-assist/eng-bundle-dependabot-2026-05-18-1ec724e3342eb9de?expand=1&title=%5BRepo%20Assist%5D%20chore(deps)%3A%20bundle%20Dependabot%20updates%20%E2%80%94%20trusted-signing-action%20v2%2C%20gh-aw-actions%200.74.4)**
>
> <details>
> <summary>Protected files</summary>
>
> - [.github/workflows/ci.yml](https://github.com/openclaw/openclaw-windows-node/blob/repo-assist/eng-bundle-dependabot-2026-05-18-1ec724e3342eb9de/.github/workflows/ci.yml)
- [.github/workflows/copilot-setup-steps.yml](https://github.com/openclaw/openclaw-windows-node/blob/repo-assist/eng-bundle-dependabot-2026-05-18-1ec724e3342eb9de/.github/workflows/copilot-setup-steps.yml)
- [.github/workflows/localization-audit.lock.yml](https://github.com/openclaw/openclaw-windows-node/blob/repo-assist/eng-bundle-dependabot-2026-05-18-1ec724e3342eb9de/.github/workflows/localization-audit.lock.yml)
- [.github/workflows/repo-assist.lock.yml](https://github.com/openclaw/openclaw-windows-node/blob/repo-assist/eng-bundle-dependabot-2026-05-18-1ec724e3342eb9de/.github/workflows/repo-assist.lock.yml)
>
> </details>

To route changes like this to a review issue instead of blocking, configure `protected-files: fallback-to-issue` in your workflow configuration.



> Generated by 🌈 Repo Assist, see [workflow run](https://github.com/openclaw/openclaw-windows-node/actions/runs/26036912840). [Learn more](https://github.com/githubnext/agentics/blob/main/docs/repo-assist.md).
>
> To install this [agentic workflow](https://github.com/githubnext/agentics/blob/97143ac59cb3a13ef2a77581f929f06719c7402a/workflows/repo-assist.md), run
> ```
> gh aw add githubnext/agentics/workflows/repo-assist.md@97143ac59cb3a13ef2a77581f929f06719c7402a
> ```

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Repo Assist] chore(deps): bundle Dependabot updates — trusted-signing-action v2, gh-aw-actions 0.74.4 #449

Summary

Changes

Test Status

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

Dependency	From	To	Dependabot PR
`azure/trusted-signing-action`	v1	v2	#445
`github/gh-aw-actions`	0.72.1	0.74.4	#446

[Repo Assist] chore(deps): bundle Dependabot updates — trusted-signing-action v2, gh-aw-actions 0.74.4 #449

Description

Summary

Changes

Test Status

Metadata

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

Issue actions