ci(github-actions): bump the github-actions group across 1 directory with 3 updates

[dependabot]

Bumps the github-actions group with 3 updates in the / directory: github/codeql-action, bridgecrewio/checkov-action and trufflesecurity/trufflehog.

Updates github/codeql-action from 4.32.5 to 4.32.6

Release notes

Sourced from github/codeql-action's releases.

v4.32.6

• Update default CodeQL bundle version to 2.24.3. #3548

Commits

• 0d579ff Merge pull request #3551 from github/update-v4.32.6-72d2d850d
• d4c6be7 Update changelog for v4.32.6
• 72d2d85 Merge pull request #3548 from github/update-bundle/codeql-bundle-v2.24.3
• 23f983c Merge pull request #3544 from github/dependabot/github_actions/dot-github/wor...
• 832e97c Merge pull request #3545 from github/dependabot/github_actions/dot-github/wor...
• 5ef38c0 Merge pull request #3546 from github/dependabot/npm_and_yarn/tar-7.5.10
• 80c9cda Add changelog note
• f2669dd Update default bundle to codeql-bundle-v2.24.3
• bd03c44 Merge branch 'main' into dependabot/github_actions/dot-github/workflows/actio...
• 102d762 Bump tar from 7.5.7 to 7.5.10
• Additional commits viewable in compare view

Updates bridgecrewio/checkov-action from 12.3086.0 to 12.3087.0

Commits

• 4b38516 Bump checkov container version to 3.2.507
• See full diff in compare view

Updates trufflesecurity/trufflehog from 3.93.6 to 3.93.7

Release notes

Sourced from trufflesecurity/trufflehog's releases.

v3.93.7

What's Changed

• [INS-331] Fix the issue causing the tests file system soruce tests to fail on windows by @​MuneebUllahKhan222 in trufflesecurity/trufflehog#4743
• Thread original chunk data through engine pipeline by @​dustin-decker in trufflesecurity/trufflehog#4780
• Added detector for JFrog Artifactory Reference Tokens by @​shahzadhaider1 in trufflesecurity/trufflehog#4684
• Fix JDBC detector regex truncating trailing non-alphanumeric password characters by @​amanfcp in trufflesecurity/trufflehog#4755

Full Changelog: trufflesecurity/trufflehog@v3.93.6...v3.93.7

Commits

• c3e599b fix JDBC detector regex truncating trailing non-alphanumeric password charact...
• 71c48af Added detector for JFrog Artifactory Reference Tokens (#4684)
• 648aca6 Thread original chunk data through engine pipeline (#4780)
• 8df943f [INS-331] Fix the issue causing the tests file system soruce tests to fail on...
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

KICS version: v2.1.20

Category Results CRITICAL 0 HIGH 0 MEDIUM 0 LOW 0 INFO 0 TRACE 0 TOTAL 0	Metric Values Files scanned 6 Files parsed 6 Files failed to scan 0 Total executed queries 4 Queries failed to execute 0 Execution time 0

Queries Results

| |

[github-actions]

✅MegaLinter analysis: Success

Descriptor	Linter	Files	Fixed	Errors	Warnings	Elapsed time
✅ ACTION	actionlint	2		0	0	0.06s
✅ COPYPASTE	jscpd	yes		no	no	1.62s
✅ EDITORCONFIG	editorconfig-checker	2		0	0	0.01s
✅ REPOSITORY	checkov	yes		no	no	22.54s
✅ REPOSITORY	devskim	yes		no	no	1.85s
✅ REPOSITORY	dustilock	yes		no	no	0.01s
✅ REPOSITORY	gitleaks	yes		no	no	1.37s
✅ REPOSITORY	git_diff	yes		no	no	0.01s
✅ REPOSITORY	grype	yes		no	no	42.53s
✅ REPOSITORY	kics	yes		no	no	2.34s
✅ REPOSITORY	kingfisher	yes		no	no	4.08s
✅ REPOSITORY	secretlint	yes		no	no	1.66s
✅ REPOSITORY	semgrep	yes		no	no	25.53s
✅ REPOSITORY	syft	yes		no	no	2.72s
✅ REPOSITORY	trivy	yes		no	no	11.57s
✅ REPOSITORY	trivy-sbom	yes		no	no	0.15s
✅ REPOSITORY	trufflehog	yes		no	no	4.55s
✅ SPELL	lychee	2		0	0	0.84s
✅ YAML	prettier	2	0	0	0	0.7s
✅ YAML	v8r	2		0	0	3.08s
✅ YAML	yamllint	2		0	0	0.37s

See detailed reports in MegaLinter artifacts
Set VALIDATE_ALL_CODEBASE: true in mega-linter.yml to validate all sources, not only the diff

Show us your support by starring ⭐ the repository

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.