chore(deps): update all

Author: renovate[bot]

.github/workflows/codeql-analysis.yml

@@ -35,7 +35,7 @@ jobs:
 
     steps:
     - name: Checkout repository
-      uses: actions/checkout@v3
+      uses: actions/checkout@v4
 
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL

.github/workflows/docker.yml

@@ -14,7 +14,7 @@ jobs:
     outputs:
       has-docker: ${{ steps.info.outputs.has-docker }}
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
         with:
           fetch-depth: '0'
       - uses: moul/repoman-action@v1
@@ -27,15 +27,15 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
 
       - name: Build the container image
-        uses: docker/build-push-action@v3.1.1
+        uses: docker/build-push-action@v5.0.0
         with:
           repository: asanaman
 
       - name: Push to GitHub Packages
-        uses: docker/build-push-action@v3.1.1
+        uses: docker/build-push-action@v5.0.0
         if: github.event_name == 'release' || github.event_name == 'push'
         with:
           username: ${{ github.actor }}
@@ -66,7 +66,7 @@ jobs:
         if: |
           (github.event_name == 'release' || github.event_name == 'push') &&
           contains(steps.check_dockerhub_credentials.outputs.missingsecrets, 'no')
-        uses: docker/build-push-action@v3.1.1
+        uses: docker/build-push-action@v5.0.0
         with:
           username: ${{ secrets.DOCKER_USERNAME }}
           password: ${{ secrets.DOCKER_PASSWORD }}

.github/workflows/go.yml

@@ -32,7 +32,7 @@ jobs:
     outputs:
       has-go-binary: ${{ steps.info.outputs.has-go-binary }}
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
         with:
           fetch-depth: '0'
       - uses: moul/repoman-action@v1
@@ -47,9 +47,9 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
       - name: Set up Go
-        uses: actions/setup-go@v3
+        uses: actions/setup-go@v4
         with:
           go-version: ${{ matrix.golang }}
       - name: Cache Go modules
@@ -59,7 +59,7 @@ jobs:
           key:          ${{ runner.os }}-go-${{ matrix.golang }}-v1-${{ hashFiles('**/go.sum') }}
           restore-keys: ${{ runner.os }}-go-${{ matrix.golang }}-v1-
       - name: Run GoReleaser (Dry Run)
-        uses: goreleaser/goreleaser-action@v3.0.0
+        uses: goreleaser/goreleaser-action@v5.0.0
         with:
           version: latest
           args: release --rm-dist --snapshot --skip-publish
@@ -71,7 +71,7 @@ jobs:
       matrix:
         golangci_lint: [v1.38]
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - name: golangci-lint
         uses: golangci/[email protected]
         with:
@@ -88,9 +88,9 @@ jobs:
         golang:
           - 1.19.x
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - name: Install Go
-        uses: actions/setup-go@v3
+        uses: actions/setup-go@v4
         with:
           go-version: ${{ matrix.golang }}
       - name: Run tests on Windows
@@ -107,9 +107,9 @@ jobs:
       OS: macos-latest
       GOLANG: ${{ matrix.golang }}
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - name: Install Go
-        uses: actions/setup-go@v3
+        uses: actions/setup-go@v4
         with:
           go-version: ${{ matrix.golang }}
       - uses: actions/[email protected]
@@ -152,9 +152,9 @@ jobs:
       OS: ubuntu-latest
       GOLANG: ${{ matrix.golang }}
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - name: Install Go
-        uses: actions/setup-go@v3
+        uses: actions/setup-go@v4
         with:
           go-version: ${{ matrix.golang }}
       - uses: actions/[email protected]

.github/workflows/label-sponsors.yml

@@ -9,6 +9,6 @@ jobs:
     name: is-sponsor-label
     runs-on: ubuntu-latest
     steps:
-      - uses: JasonEtco/is-sponsor-label-action@v1.2.0
+      - uses: JasonEtco/is-sponsor-label-action@v2.0.0
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

.github/workflows/pr.yml

@@ -12,7 +12,7 @@ jobs:
     name: Release-Notes Preview
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v3
+    - uses: actions/checkout@v4
     - run: |
         git fetch --prune --unshallow --tags
     - uses: snyk/[email protected]
@@ -26,7 +26,7 @@ jobs:
     name: Documentation
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
         with:
           depth: 1
       - uses: nosborn/github-action-markdown-cli@master

.github/workflows/release.yml

@@ -15,7 +15,7 @@ jobs:
     steps:
       -
         name: Checkout
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
       -
         name: Unshallow
         run: git fetch --prune --unshallow
@@ -31,7 +31,7 @@ jobs:
       -
         name: Set up Go
         if: steps.semantic.outputs.new-release-published == 'true' && steps.repoman.outputs.has-go-binary == 'true'
-        uses: actions/setup-go@v3
+        uses: actions/setup-go@v4
         with:
           go-version: ${{ matrix.golang }}
       -
@@ -45,7 +45,7 @@ jobs:
       -
         name: Run GoReleaser
         if: steps.semantic.outputs.new-release-published == 'true' && steps.repoman.outputs.has-go-binary == 'true'
-        uses: goreleaser/goreleaser-action@v3.0.0
+        uses: goreleaser/goreleaser-action@v5.0.0
         with:
           version: latest
           args: release --rm-dist

.github/workflows/scorecards.yml

@@ -22,15 +22,15 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
         with:
           persist-credentials: false
 
       - name: "Run analysis"
         env:
           SCORECARD_READ_TOKEN: ${{ secrets.SCORECARD_READ_TOKEN }}
         if: env.SCORECARD_READ_TOKEN != null
-        uses: ossf/scorecard-action@865b4092859256271290c77adbd10a43f4779972 # v1.0.4
+        uses: ossf/scorecard-action@483ef80eb98fb506c348f7d62e28055e49fe2398 # v2.3.0
         with:
           results_file: results.sarif
           results_format: sarif

.github/workflows/semgrep.yml

@@ -12,11 +12,11 @@ name: Semgrep
 jobs:
   semgrep:
     name: Scan
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-22.04
     env:
       SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}
     container:
       image: returntocorp/semgrep
     steps:
-    - uses: actions/checkout@v3
+    - uses: actions/checkout@v4
     - run: semgrep ci

tool/lint/package.json

@@ -1,6 +1,6 @@
 {
   "dependencies": {
-    "alex": "10.0.0",
+    "alex": "11.0.1",
     "markdown-spellcheck": "1.3.1",
     "markdownlint-cli": "0.31.1",
     "remark-cli": "11.0.0",