deps(gha): bump the github-actions group with 5 updates

[dependabot]

Bumps the github-actions group with 5 updates:

Package	From	To
iarekylew00t/verified-bot-commit	2.1.8	2.2.0
pnpm/action-setup	4	5
astral-sh/setup-uv	7.5.0	7.6.0
aws-actions/configure-aws-credentials	2ab6fc87e42bf5c70a86921a8ac88dfabce098c7	b1257c400167d727708335212f95607835cd03fd
aws-actions/amazon-ecr-login	cc05f4a4db45f6b446eee901ef3620a08754cbcf	a6f26d4dac281724664e992240eebeb7469b9154

Updates iarekylew00t/verified-bot-commit from 2.1.8 to 2.2.0

Release notes

Sourced from iarekylew00t/verified-bot-commit's releases.

v2.2.0

What's Changed

✨ Other Changes

• feat: Adding support for empty commits by @​IAreKyleW00t in IAreKyleW00t/verified-bot-commit#310

🏗️ Dependencies

• build(deps): Bump actions/create-github-app-token from 2.2.1 to 3.0.0 by @​dependabot[bot] in IAreKyleW00t/verified-bot-commit#307
• build(deps): Bump the actions group with 2 updates by @​dependabot[bot] in IAreKyleW00t/verified-bot-commit#306
• build(deps-dev): Bump the npm-development group with 2 updates by @​dependabot[bot] in IAreKyleW00t/verified-bot-commit#308
• build(deps-dev): Bump flatted from 3.3.4 to 3.4.2 by @​dependabot[bot] in IAreKyleW00t/verified-bot-commit#311

Full Changelog: IAreKyleW00t/verified-bot-commit@v2.1.8...v2.2.0

Commits

• e5a15a0 chore: Bump version to v2.2.0
• da2762a build(deps-dev): Bump flatted from 3.3.4 to 3.4.2 (#311)
• fb67511 feat: Adding support for empty commits (#310)
• 82109aa build(deps-dev): Bump the npm-development group with 2 updates (#308)
• 40144a6 build(deps): Bump the actions group with 2 updates (#306)
• d1d1a21 build(deps): Bump actions/create-github-app-token from 2.2.1 to 3.0.0 (#307)
• See full diff in compare view

Updates pnpm/action-setup from 4 to 5

Release notes

Sourced from pnpm/action-setup's releases.

v5.0.0

Updated the action to use Node.js 24.

v4.4.0

Updated the action to use Node.js 24.

v4.3.0

What's Changed

• docs: fix the run_install example in the Readme by @​dreyks in pnpm/action-setup#175
• chore: remove unused @types/node-fetch dependency by @​silverwind in pnpm/action-setup#186
• Clarify that package_json_file is relative to GITHUB_WORKSPACE by @​chris-martin in pnpm/action-setup#184
• feat: store caching by @​jrmajor in pnpm/action-setup#188
• refactor: remove star imports by @​KSXGitHub in pnpm/action-setup#196
• fix(ci): exclude macos by @​KSXGitHub in pnpm/action-setup#197

New Contributors

• @​dreyks made their first contribution in pnpm/action-setup#175
• @​silverwind made their first contribution in pnpm/action-setup#186
• @​chris-martin made their first contribution in pnpm/action-setup#184
• @​jrmajor made their first contribution in pnpm/action-setup#188
• @​Boosted-Bonobo made their first contribution in pnpm/action-setup#199

Full Changelog: pnpm/action-setup@v4.2.0...v4.3.0

v4.2.0

When there's a .npmrc file at the root of the repository, pnpm will be fetched from the registry that is specified in that .npmrc file #179

v4.1.0

Add support for package.yaml #156.

Commits

• See full diff in compare view

Updates astral-sh/setup-uv from 7.5.0 to 7.6.0

Release notes

Sourced from astral-sh/setup-uv's releases.

v7.6.0 🌈 Fetch uv from Astral's mirror by default

Changes

We now default to download uv from releases.astral.sh. This means by default we don't hit the GitHub API at all and shouldn't see any rate limits and timeouts any more.

🚀 Enhancements

• Fetch uv from Astral's mirror by default @​zsol (#809)

🧰 Maintenance

• Switch to ESM for source and test, use CommonJS for dist @​eifinger (#806)
• chore: update known checksums for 0.10.10 @github-actions[bot] (#804)

⬆️ Dependency updates

• chore(deps): bump zizmorcore/zizmor-action from 0.5.0 to 0.5.2 @dependabot[bot] (#808)
• Bump deps @​eifinger (#805)

Commits

• 37802ad Fetch uv from Astral's mirror by default (#809)
• 9f00d18 chore(deps): bump zizmorcore/zizmor-action from 0.5.0 to 0.5.2 (#808)
• fd8f376 Switch to ESM for source and test, use CommonJS for dist (#806)
• f9070de Bump deps (#805)
• cadb67b chore: update known checksums for 0.10.10 (#804)
• See full diff in compare view

Updates aws-actions/configure-aws-credentials from 2ab6fc87e42bf5c70a86921a8ac88dfabce098c7 to b1257c400167d727708335212f95607835cd03fd

Changelog

Sourced from aws-actions/configure-aws-credentials's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

6.0.0 (2026-02-04)

⚠ BREAKING CHANGES

• Update action to use node24 (#1632) (a7a2c11)

Features

• add support to define transitive tag keys (#1316) (232435c) (930ebd9)

Bug Fixes

• properly output aws-account-id and authenticated-arn when using role-chaining (#1633) (7ceaf96)

5.1.1 (2025-11-24)

Miscellaneous Chores

• release 5.1.1 (56d6a58)

5.1.0 (2025-10-06)

Features

• Add global timeout support (#1487) (1584b8b)
• add no-proxy support (#1482) (dde9b22)
• Improve debug logging in retry logic (#1485) (97ef425)

Bug Fixes

• properly expose getProxyForUrl (introduced in #1482) (#1486) (cea4298)

5.0.0 (2025-09-03)

⚠ BREAKING CHANGES

• Cleanup input handling. Changes invalid boolean input behavior (see #1445)

Features

• add skip OIDC option (#1458) (8c45f6b)

... (truncated)

Commits

• b1257c4 chore(deps-dev): bump esbuild from 0.27.3 to 0.27.4 (#1688)
• e08afaa chore: Update dist
• 668d147 chore(deps): bump @​aws-sdk/client-sts from 3.1005.0 to 3.1010.0 (#1684)
• 24d6c03 chore: Update dist
• 97361f4 chore(deps-dev): bump @​aws-sdk/credential-provider-env (#1690)
• b2e4eaa chore(deps-dev): bump @​biomejs/biome from 2.4.6 to 2.4.7 (#1687)
• 615659e chore(deps-dev): bump @​types/node from 25.4.0 to 25.5.0 (#1683)
• 2bb9df8 chore: Update dist
• See full diff in compare view

Updates aws-actions/amazon-ecr-login from cc05f4a4db45f6b446eee901ef3620a08754cbcf to a6f26d4dac281724664e992240eebeb7469b9154

Changelog

Sourced from aws-actions/amazon-ecr-login's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

2.1.0 (2026-03-19)

Features

• Add EKS Pod Identity support to Amazon ECR login action (#624, #735) (#740) (dcb4c27)

2.0.2 (2026-03-13)

Bug Fixes

• Upgrade import syntax to ES Modules (#889) (0edf37c)

2.0.1 (2023-10-02)

2.0.0 (2023-10-02)

⚠ BREAKING CHANGES

• The default value of the 'mask-password' input has been updated from false to true.

• Treat maskPassword as false only if explicitly set to false

• Add new-v2-release to README

Features

• release v2 (#520) (d71acaf)

1.7.0 (2023-08-09)

Features

• provide input to optionally mask output docker password (#491) (98f33d2)

1.6.2 (2023-06-26)

Bug Fixes

• fix and upgrade https proxy agent (a3dee4b)

1.6.1 (2023-06-20)

... (truncated)

Commits

• a6f26d4 chore(deps-dev): bump flatted from 3.4.1 to 3.4.2 (#949)
• 261fc3d chore(release): 2.1.0
• fce8c93 chore: Update dist (#944)
• fd38eb4 chore(deps): bump @​aws-sdk/client-ecr from 3.1007.0 to 3.1011.0 (#930)
• a12f2e7 chore: Update dist (#939)
• 1f8f375 chore(deps): bump @​aws-sdk/credential-providers from 3.744.0 to 3.1011.0 (#928)
• 0234287 chore(deps): bump @​aws-sdk/client-ecr-public from 3.982.0 to 3.1011.0 (#932)
• 400e82e chore(deps-dev): bump jest from 30.2.0 to 30.3.0 (#929)
• f7873b0 chore(deps): bump actions/github-script from 6 to 8 (#927)
• 5e6bf76 chore(deps): bump github/codeql-action from 3 to 4 (#926)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[greptile-apps]

PR author is in the excluded authors list.