Bump the github-actions group across 1 directory with 5 updates

Bumps the github-actions group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [taiki-e/install-action](https://github.com/taiki-e/install-action) | `2.47.18` | `2.47.25` |
| [actions/setup-node](https://github.com/actions/setup-node) | `4.1.0` | `4.2.0` |
| [github/codeql-action](https://github.com/github/codeql-action) | `3.28.1` | `3.28.5` |
| [docker/build-push-action](https://github.com/docker/build-push-action) | `6.12.0` | `6.13.0` |
| [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) | `1.12.3` | `1.12.4` |



Updates `taiki-e/install-action` from 2.47.18 to 2.47.25
- [Release notes](https://github.com/taiki-e/install-action/releases)
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md)
- [Commits](taiki-e/install-action@a7adeb1...1936c8c)

Updates `actions/setup-node` from 4.1.0 to 4.2.0
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](actions/setup-node@39370e3...1d0ff46)

Updates `github/codeql-action` from 3.28.1 to 3.28.5
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@b6a472f...f6091c0)

Updates `docker/build-push-action` from 6.12.0 to 6.13.0
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](docker/build-push-action@67a2d40...ca877d9)

Updates `pypa/gh-action-pypi-publish` from 1.12.3 to 1.12.4
- [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases)
- [Commits](pypa/gh-action-pypi-publish@67339c7...76f52bc)

---
updated-dependencies:
- dependency-name: taiki-e/install-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: actions/setup-node
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: pypa/gh-action-pypi-publish
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <[email protected]>

.github/workflows/ci-rust.yml

@@ -102,7 +102,7 @@ jobs:
         timeout-minutes: 5
 
       # Install cargo nextest command
-      - uses: taiki-e/install-action@a7adeb15af2926b0ac7478ad165047cd2d8ba350 # pin v2.47.18
+      - uses: taiki-e/install-action@1936c8cfe365805f86ceb097d570620cc3a19932 # pin v2.47.25
         with:
           tool: [email protected], [email protected], [email protected]
 
@@ -263,7 +263,7 @@ jobs:
         timeout-minutes: 5
 
       # Install cargo nextest command
-      - uses: taiki-e/install-action@a7adeb15af2926b0ac7478ad165047cd2d8ba350 # pin v2.47.18
+      - uses: taiki-e/install-action@1936c8cfe365805f86ceb097d570620cc3a19932 # pin v2.47.25
         with:
           tool: [email protected]
 

.github/workflows/ci-web.yml

@@ -48,7 +48,7 @@ jobs:
         uses: ./.github/actions/system-info
         timeout-minutes: 1
 
-      - uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af  # pin v4.1.0
+      - uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a  # pin v4.2.0
         with:
           node-version: ${{ env.node-version }}
           cache: npm
@@ -130,7 +130,7 @@ jobs:
         timeout-minutes: 5
 
       # Install wasm-pack command
-      - uses: taiki-e/install-action@a7adeb15af2926b0ac7478ad165047cd2d8ba350 # pin v2.47.18
+      - uses: taiki-e/install-action@1936c8cfe365805f86ceb097d570620cc3a19932 # pin v2.47.25
         with:
           tool: wasm-pack@${{ env.wasm-pack-version }}
 

.github/workflows/ci.yml

@@ -191,7 +191,7 @@ jobs:
           diff --unified .pre-commit-config.yaml $TEMP_FILE || true
           echo "path=$TEMP_FILE" >> $GITHUB_OUTPUT
 
-      - uses: taiki-e/install-action@a7adeb15af2926b0ac7478ad165047cd2d8ba350 # pin v2.47.18
+      - uses: taiki-e/install-action@1936c8cfe365805f86ceb097d570620cc3a19932 # pin v2.47.25
         with:
           tool: [email protected]
 

.github/workflows/codeql.yml

@@ -58,7 +58,7 @@ jobs:
       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL
         if: steps.should-run-python-analysis.outputs.run == 'true'
-        uses: github/codeql-action/init@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # pin v3.28.1
+        uses: github/codeql-action/init@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4 # pin v3.28.5
         with:
           languages: python
           setup-python-dependencies: false
@@ -87,7 +87,7 @@ jobs:
 
       - name: Perform CodeQL Analysis
         if: steps.should-run-python-analysis.outputs.run == 'true'
-        uses: github/codeql-action/analyze@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # pin v3.28.1
+        uses: github/codeql-action/analyze@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4 # pin v3.28.5
         with:
           category: /language:python
 
@@ -142,7 +142,7 @@ jobs:
   #     # Initializes the CodeQL tools for scanning.
   #     - name: Initialize CodeQL
   #       if: steps.should-run-java-analysis.outputs.run == 'true'
-  #       uses: github/codeql-action/init@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # pin v3.28.1
+  #       uses: github/codeql-action/init@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4 # pin v3.28.5
   #       with:
   #         languages: java
   #         # If you wish to specify custom queries, you can do so here or in a config file.
@@ -154,15 +154,15 @@ jobs:
 
   #     - name: Autobuild android
   #       if: steps.should-run-java-analysis.outputs.run == 'true'
-  #       uses: github/codeql-action/autobuild@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # pin v3.28.1
+  #       uses: github/codeql-action/autobuild@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4 # pin v3.28.5
   #       with:
   #         working-directory: client/android
   #       env:
   #         GRADLE_LIBPARSEC_BUILD_STRATEGY: no_build
 
   #     - name: Perform CodeQL Analysis
   #       if: steps.should-run-java-analysis.outputs.run == 'true'
-  #       uses: github/codeql-action/analyze@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # pin v3.28.1
+  #       uses: github/codeql-action/analyze@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4 # pin v3.28.5
   #       with:
   #         category: /language:java
 
@@ -191,7 +191,7 @@ jobs:
       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL
         if: steps.should-run-js-analysis.outputs.run == 'true'
-        uses: github/codeql-action/init@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # pin v3.28.1
+        uses: github/codeql-action/init@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4 # pin v3.28.5
         with:
           languages: typescript
 
@@ -202,12 +202,12 @@ jobs:
 
       - name: Autobuild for typescript
         if: steps.should-run-js-analysis.outputs.run == 'true'
-        uses: github/codeql-action/autobuild@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # pin v3.28.1
+        uses: github/codeql-action/autobuild@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4 # pin v3.28.5
         with:
           working-directory: client
 
       - name: Perform CodeQL Analysis
         if: steps.should-run-js-analysis.outputs.run == 'true'
-        uses: github/codeql-action/analyze@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # pin v3.28.1
+        uses: github/codeql-action/analyze@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4 # pin v3.28.5
         with:
           category: /language:typescript

.github/workflows/docker-server.yml

@@ -70,7 +70,7 @@ jobs:
             latest=${{ github.event_name == 'push' && github.ref_type == 'tag' }}
 
       - name: Build and export to Docker
-        uses: docker/build-push-action@67a2d409c0a876cbe6b11854e3e25193efe4e62d # v6.12.0
+        uses: docker/build-push-action@ca877d9245402d1537745e0e356eab47c3520991 # v6.13.0
         id: build
         with:
           context: .
@@ -103,7 +103,7 @@ jobs:
         run: echo "${{ steps.metadata.outputs.tags }}"
 
       - name: Build and publish
-        uses: docker/build-push-action@67a2d409c0a876cbe6b11854e3e25193efe4e62d # v6.12.0
+        uses: docker/build-push-action@ca877d9245402d1537745e0e356eab47c3520991 # v6.13.0
         id: publish
         with:
           context: .

.github/workflows/docker-testbed.yml

@@ -77,7 +77,7 @@ jobs:
             latest=${{ github.event_name == 'workflow_dispatch' }}
 
       - name: Build and export to Docker
-        uses: docker/build-push-action@67a2d409c0a876cbe6b11854e3e25193efe4e62d # v6.12.0
+        uses: docker/build-push-action@ca877d9245402d1537745e0e356eab47c3520991 # v6.13.0
         id: build
         with:
           context: .
@@ -111,7 +111,7 @@ jobs:
 
       - name: Build and publish
         if: github.event_name == 'workflow_dispatch'
-        uses: docker/build-push-action@67a2d409c0a876cbe6b11854e3e25193efe4e62d # v6.12.0
+        uses: docker/build-push-action@ca877d9245402d1537745e0e356eab47c3520991 # v6.13.0
         with:
           context: .
           file: server/packaging/testbed-server/testbed-server.dockerfile

.github/workflows/package-client.yml

@@ -88,7 +88,7 @@ jobs:
           ref: ${{ inputs.commit_sha }}
         timeout-minutes: 5
 
-      - uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af  # pin v4.1.0
+      - uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a  # pin v4.2.0
         with:
           node-version: ${{ env.node-version }}
         timeout-minutes: 2
@@ -108,7 +108,7 @@ jobs:
         working-directory: client
 
       # Install syft
-      - uses: taiki-e/install-action@a7adeb15af2926b0ac7478ad165047cd2d8ba350 # pin v2.47.18
+      - uses: taiki-e/install-action@1936c8cfe365805f86ceb097d570620cc3a19932 # pin v2.47.25
         with:
           tool: [email protected], wasm-pack@${{ env.wasm-pack-version }}
 
@@ -211,7 +211,7 @@ jobs:
           mv -v parsec_*_*.snap Parsec_${{ steps.version.outputs.full }}_linux_$ARCH.snap
 
       # Install syft
-      - uses: taiki-e/install-action@a7adeb15af2926b0ac7478ad165047cd2d8ba350 # pin v2.47.18
+      - uses: taiki-e/install-action@1936c8cfe365805f86ceb097d570620cc3a19932 # pin v2.47.25
         with:
           tool: [email protected]
 
@@ -265,7 +265,7 @@ jobs:
           ref: ${{ inputs.commit_sha }}
         timeout-minutes: 5
 
-      - uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af  # pin v4.1.0
+      - uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a  # pin v4.2.0
         with:
           node-version: ${{ env.node-version }}
         timeout-minutes: 2
@@ -404,7 +404,7 @@ jobs:
         timeout-minutes: 1
 
       # Install syft
-      - uses: taiki-e/install-action@a7adeb15af2926b0ac7478ad165047cd2d8ba350 # pin v2.47.18
+      - uses: taiki-e/install-action@1936c8cfe365805f86ceb097d570620cc3a19932 # pin v2.47.25
         with:
           tool: [email protected]
 

.github/workflows/package-server.yml

@@ -111,7 +111,7 @@ jobs:
         run: python server/packaging/wheel/wheel_it.py ./server --output dist --skip-wheel
 
       # Install syft
-      - uses: taiki-e/install-action@a7adeb15af2926b0ac7478ad165047cd2d8ba350 # pin v2.47.18
+      - uses: taiki-e/install-action@1936c8cfe365805f86ceb097d570620cc3a19932 # pin v2.47.25
         with:
           tool: [email protected]
 

.github/workflows/publish.yml

@@ -140,7 +140,7 @@ jobs:
 
       - name: Publish wheel on PyPI
         if: steps.version.outputs.local == ''
-        uses: pypa/gh-action-pypi-publish@67339c736fd9354cd4f8cb0b744f2b82a74b5c70 # pin v1.12.3
+        uses: pypa/gh-action-pypi-publish@76f52bc884231f62b9a034ebfe128415bbaabdfc # pin v1.12.4
         with:
           user: __token__
           password: ${{ secrets.PYPI_CREDENTIALS }}