From 5d1724251d5e9ae10fdf5bd44f51e68d709ed35a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 24 May 2026 07:22:52 +0000
Subject: [PATCH] ci: bump the github-actions group with 2 updates

Bumps the github-actions group with 2 updates: [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) and [creatornader/oss-security-scan/.github/workflows/oss-security-scan.yml](https://github.com/creatornader/oss-security-scan).


Updates `dependabot/fetch-metadata` from 2 to 3
- [Release notes](https://github.com/dependabot/fetch-metadata/releases)
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v2...v3)

Updates `creatornader/oss-security-scan/.github/workflows/oss-security-scan.yml` from 0.1.0 to 0.1.1
- [Changelog](https://github.com/creatornader/oss-security-scan/blob/main/CHANGELOG.md)
- [Commits](https://github.com/creatornader/oss-security-scan/compare/v0.1.0...v0.1.1)

---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
  dependency-version: '3'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: creatornader/oss-security-scan/.github/workflows/oss-security-scan.yml
  dependency-version: 0.1.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/dependabot-auto-merge.yml | 2 +-
 .github/workflows/security-scan.yml         | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/dependabot-auto-merge.yml b/.github/workflows/dependabot-auto-merge.yml
index be15306..1b20cea 100644
--- a/.github/workflows/dependabot-auto-merge.yml
+++ b/.github/workflows/dependabot-auto-merge.yml
@@ -34,7 +34,7 @@ jobs:
     steps:
       - name: Get Dependabot metadata
         id: metadata
-        uses: dependabot/fetch-metadata@v2
+        uses: dependabot/fetch-metadata@v3
         with:
           github-token: ${{ secrets.GITHUB_TOKEN }}
 
diff --git a/.github/workflows/security-scan.yml b/.github/workflows/security-scan.yml
index 785db52..fd1c377 100644
--- a/.github/workflows/security-scan.yml
+++ b/.github/workflows/security-scan.yml
@@ -28,7 +28,7 @@ permissions:
 
 jobs:
   scan:
-    uses: creatornader/oss-security-scan/.github/workflows/oss-security-scan.yml@v0.1.0
+    uses: creatornader/oss-security-scan/.github/workflows/oss-security-scan.yml@v0.1.1
     with:
       gitleaks-version: '8.30.1'
       gitleaks-config: '.gitleaks.toml'