fix(deps): update all dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Age	Adoption	Passing	Confidence
actions/dependency-review-action	action	minor	v4.5.0 -> v4.6.0
actions/setup-node	action	minor	v4.3.0 -> v4.4.0
github.com/fsnotify/fsnotify	require	minor	v1.8.0 -> v1.9.0
github/codeql-action	action	patch	v3.28.13 -> v3.28.15
go (source)	toolchain	patch	1.24.1 -> 1.24.2

---

Release Notes

actions/dependency-review-action (actions/dependency-review-action)

v4.6.0

Compare Source

What's Changed

• Updating multiple dependency versions by @​Ahmed3lmallah in https://github.com/actions/dependency-review-action/pull/870
• Grouping minor and patch dependabot updates to lessen the number of PRs by @​Ahmed3lmallah in https://github.com/actions/dependency-review-action/pull/876
• Bump actions/stale from 9.0.0 to 9.1.0 by @​dependabot in https://github.com/actions/dependency-review-action/pull/878
• Bump undici from 5.28.4 to 5.28.5 by @​dependabot in https://github.com/actions/dependency-review-action/pull/877
• DR Action should link to the proxima stamp when appropriate in error messages by @​AshelyTC in https://github.com/actions/dependency-review-action/pull/891
• Allow deny package removal by @​ellenfieldn in https://github.com/actions/dependency-review-action/pull/888
• Fix typos by @​omahs in https://github.com/actions/dependency-review-action/pull/893
• Bump esbuild from 0.19.5 to 0.25.0 by @​dependabot in https://github.com/actions/dependency-review-action/pull/900
• Bump octokit and related dependencies by @​RomanIakovlev in https://github.com/actions/dependency-review-action/pull/904
• Bump @​babel/helpers from 7.23.2 to 7.26.10 by @​dependabot in https://github.com/actions/dependency-review-action/pull/905
• Bump @​octokit/plugin-paginate-rest from 9.1.5 to 9.2.2 by @​dependabot in https://github.com/actions/dependency-review-action/pull/899
• Update transitive dependency spdx-license-ids by @​ailox in https://github.com/actions/dependency-review-action/pull/855
• To not print OpenSSF Scorecard section if no dependencies scanned by @​fabasoad in https://github.com/actions/dependency-review-action/pull/884
• Improve usage of this action in dependency-review.yml by @​fabasoad in https://github.com/actions/dependency-review-action/pull/883
• Clarify comment-summary-in-pr behaviour by @​Pantelis-Santorinios in https://github.com/actions/dependency-review-action/pull/902
• Prepare 4.6.0 Release candidate by @​brrygrdn in https://github.com/actions/dependency-review-action/pull/910

New Contributors

• @​AshelyTC made their first contribution in https://github.com/actions/dependency-review-action/pull/891
• @​ellenfieldn made their first contribution in https://github.com/actions/dependency-review-action/pull/888
• @​omahs made their first contribution in https://github.com/actions/dependency-review-action/pull/893
• @​RomanIakovlev made their first contribution in https://github.com/actions/dependency-review-action/pull/904
• @​ailox made their first contribution in https://github.com/actions/dependency-review-action/pull/855
• @​fabasoad made their first contribution in https://github.com/actions/dependency-review-action/pull/884
• @​Pantelis-Santorinios made their first contribution in https://github.com/actions/dependency-review-action/pull/902
• @​brrygrdn made their first contribution in https://github.com/actions/dependency-review-action/pull/910

Full Changelog: actions/dependency-review-action@v4.5.0...v4.6.0

actions/setup-node (actions/setup-node)

v4.4.0

Compare Source

fsnotify/fsnotify (github.com/fsnotify/fsnotify)

v1.9.0

Compare Source

Changes and fixes

• all: make BufferedWatcher buffered again (#​657)

• inotify: fix race when adding/removing watches while a watched path is being deleted (#​678, #​686)

• inotify: don't send empty event if a watched path is unmounted (#​655)

• inotify: don't register duplicate watches when watching both a symlink and its target; previously that would get "half-added" and removing the second would panic (#​679)

• kqueue: fix watching relative symlinks (#​681)

• kqueue: correctly mark pre-existing entries when watching a link to a dir on kqueue (#​682)

• illumos: don't send error if changed file is deleted while processing the event (#​678)

github/codeql-action (github/codeql-action)

v3.28.15

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.15 - 07 Apr 2025

• Fix bug where the action would fail if it tried to produce a debug artifact with more than 65535 files. #​2842

See the full CHANGELOG.md for more information.

v3.28.14

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.14 - 07 Apr 2025

• Update default CodeQL bundle version to 2.21.0. #​2838

See the full CHANGELOG.md for more information.

golang/go (go)

v1.24.2

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub ↗.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	npm/​starpc@​0.38.0
	npm/​typescript@​5.8.2 ⏵ 5.8.3
	golang/​github.com/​fsnotify/​fsnotify@​v1.8.0 ⏵ v1.9.0	+2
	golang/​github.com/​aperturerobotics/​protobuf-go-lite@​v0.8.1 ⏵ v0.9.1

View full report ↗