From 9268cfe5b43218ade709b937814c9ac2bf63df20 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 24 Nov 2025 11:43:38 +0000
Subject: [PATCH 1/3] Bump actions/checkout from 5 to 6

Bumps [actions/checkout](https://github.com/actions/checkout) from 5 to 6.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/ci.yml     | 4 ++--
 .github/workflows/linter.yml | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 1178de6..1d03a06 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -29,7 +29,7 @@ jobs:
     steps:
       - name: Checkout
         id: checkout
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       - name: Setup Docker BuildX
         id: setup-buildx
@@ -62,7 +62,7 @@ jobs:
     steps:
       - name: Checkout
         id: checkout
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       - name: Test Local Action
         id: test-action
diff --git a/.github/workflows/linter.yml b/.github/workflows/linter.yml
index a6849f6..ca7d254 100644
--- a/.github/workflows/linter.yml
+++ b/.github/workflows/linter.yml
@@ -21,7 +21,7 @@ jobs:
     steps:
       - name: Checkout
         id: checkout
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0
 

From ff3b85c57fb1bac50c183d9f9657f456db34a2d8 Mon Sep 17 00:00:00 2001
From: Nick Alteen <ncalteen@github.com>
Date: Fri, 5 Dec 2025 11:22:49 -0500
Subject: [PATCH 2/3] Disable biome linters

---
 .github/workflows/linter.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/linter.yml b/.github/workflows/linter.yml
index ca7d254..2689c63 100644
--- a/.github/workflows/linter.yml
+++ b/.github/workflows/linter.yml
@@ -32,4 +32,6 @@ jobs:
           DEFAULT_BRANCH: main
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
           VALIDATE_ALL_CODEBASE: true
+          VALIDATE_BIOME_FORMAT: false
+          VALIDATE_BIOME_LINT: false
           VALIDATE_GITHUB_ACTIONS_ZIZMOR: false

From 2dbe6e60bce07a7f74cbf5dbe960b3c071cf06a8 Mon Sep 17 00:00:00 2001
From: Nick Alteen <ncalteen@github.com>
Date: Fri, 5 Dec 2025 11:24:37 -0500
Subject: [PATCH 3/3] Add user

---
 Dockerfile | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/Dockerfile b/Dockerfile
index a472548..53a5e44 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -7,5 +7,12 @@ WORKDIR /usr/src
 # Copy any source file(s) required for the action
 COPY entrypoint.sh .
 
+# Create a non-root user and switch to it
+RUN addgroup -S actiongroup && adduser -S actionuser -G actiongroup && \
+    chown -R actionuser:actiongroup /usr/src && \
+    chmod +x /usr/src/entrypoint.sh
+
+USER actionuser
+
 # Configure the container to be run as an executable
 ENTRYPOINT ["/usr/src/entrypoint.sh"]