Bump peter-evans/create-pull-request from 6 to 7

[dependabot]

Bumps peter-evans/create-pull-request from 6 to 7.

Release notes

Sourced from peter-evans/create-pull-request's releases.

Create Pull Request v7.0.0

✨ Now supports commit signing with bot-generated tokens! See "What's new" below. ✍️🤖

Behaviour changes

• Action input git-token has been renamed branch-token, to be more clear about its purpose. The branch-token is the token that the action will use to create and update the branch.
• The action now handles requests that have been rate-limited by GitHub. Requests hitting a primary rate limit will retry twice, for a total of three attempts. Requests hitting a secondary rate limit will not be retried.
• The pull-request-operation output now returns none when no operation was executed.
• Removed deprecated output environment variable PULL_REQUEST_NUMBER. Please use the pull-request-number action output instead.

What's new

• The action can now sign commits as github-actions[bot] when using GITHUB_TOKEN, or your own bot when using GitHub App tokens. See commit signing for details.
• Action input draft now accepts a new value always-true. This will set the pull request to draft status when the pull request is updated, as well as on creation.
• A new action input maintainer-can-modify indicates whether maintainers can modify the pull request. The default is true, which retains the existing behaviour of the action.
• A new output pull-request-commits-verified returns true or false, indicating whether GitHub considers the signature of the branch's commits to be verified.

What's Changed

• build(deps-dev): bump @​types/node from 18.19.36 to 18.19.39 by @​dependabot in peter-evans/create-pull-request#3000
• build(deps-dev): bump ts-jest from 29.1.5 to 29.2.0 by @​dependabot in peter-evans/create-pull-request#3008
• build(deps-dev): bump prettier from 3.3.2 to 3.3.3 by @​dependabot in peter-evans/create-pull-request#3018
• build(deps-dev): bump ts-jest from 29.2.0 to 29.2.2 by @​dependabot in peter-evans/create-pull-request#3019
• build(deps-dev): bump eslint-plugin-prettier from 5.1.3 to 5.2.1 by @​dependabot in peter-evans/create-pull-request#3035
• build(deps-dev): bump @​types/node from 18.19.39 to 18.19.41 by @​dependabot in peter-evans/create-pull-request#3037
• build(deps): bump undici from 6.19.2 to 6.19.4 by @​dependabot in peter-evans/create-pull-request#3036
• build(deps-dev): bump ts-jest from 29.2.2 to 29.2.3 by @​dependabot in peter-evans/create-pull-request#3038
• build(deps-dev): bump @​types/node from 18.19.41 to 18.19.42 by @​dependabot in peter-evans/create-pull-request#3070
• build(deps): bump undici from 6.19.4 to 6.19.5 by @​dependabot in peter-evans/create-pull-request#3086
• build(deps-dev): bump @​types/node from 18.19.42 to 18.19.43 by @​dependabot in peter-evans/create-pull-request#3087
• build(deps-dev): bump ts-jest from 29.2.3 to 29.2.4 by @​dependabot in peter-evans/create-pull-request#3088
• build(deps): bump undici from 6.19.5 to 6.19.7 by @​dependabot in peter-evans/create-pull-request#3145
• build(deps-dev): bump @​types/node from 18.19.43 to 18.19.44 by @​dependabot in peter-evans/create-pull-request#3144
• Update distribution by @​actions-bot in peter-evans/create-pull-request#3154
• build(deps): bump undici from 6.19.7 to 6.19.8 by @​dependabot in peter-evans/create-pull-request#3213
• build(deps-dev): bump @​types/node from 18.19.44 to 18.19.45 by @​dependabot in peter-evans/create-pull-request#3214
• Update distribution by @​actions-bot in peter-evans/create-pull-request#3221
• build(deps-dev): bump eslint-import-resolver-typescript from 3.6.1 to 3.6.3 by @​dependabot in peter-evans/create-pull-request#3255
• build(deps-dev): bump @​types/node from 18.19.45 to 18.19.46 by @​dependabot in peter-evans/create-pull-request#3254
• build(deps-dev): bump ts-jest from 29.2.4 to 29.2.5 by @​dependabot in peter-evans/create-pull-request#3256
• v7 - signed commits by @​peter-evans in peter-evans/create-pull-request#3057

New Contributors

• @​rustycl0ck made their first contribution in peter-evans/create-pull-request#3057

Full Changelog: peter-evans/create-pull-request@v6.1.0...v7.0.0

Create Pull Request v6.1.0

✨ Adds pull-request-branch as an action output.

What's Changed

... (truncated)

Commits

• 4320041 feat: signed commits (v7) (#3057)
• 0c2a66f build(deps-dev): bump ts-jest from 29.2.4 to 29.2.5 (#3256)
• 17121bc build(deps-dev): bump @​types/node from 18.19.45 to 18.19.46 (#3254)
• 87b5d6d build(deps-dev): bump eslint-import-resolver-typescript (#3255)
• 00897e0 build: update distribution (#3221)
• 4cfc1fc build(deps-dev): bump @​types/node from 18.19.44 to 18.19.45 (#3214)
• cb4ed64 build(deps): bump undici from 6.19.7 to 6.19.8 (#3213)
• 4eb90b7 ci: separate test suite commands in pr comment
• 5308ecb ci: add sign-commits flag to test suite comment
• ba864ad build: update distribution (#3154)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

🦙 MegaLinter status: ✅ SUCCESS

Descriptor	Linter	Files	Fixed	Errors	Elapsed time
✅ ACTION	actionlint	9		0	0.03s
✅ BASH	bash-exec	1		0	0.0s
✅ BASH	shellcheck	1		0	0.04s
✅ BASH	shfmt	1		0	0.0s
✅ EDITORCONFIG	editorconfig-checker	160		0	0.8s
✅ JSON	jsonlint	4		0	0.17s
✅ JSON	prettier	3		0	0.47s
✅ JSON	v8r	4		0	2.66s
✅ MARKDOWN	markdownlint	3		0	0.49s
✅ MARKDOWN	markdown-link-check	3		0	9.57s
✅ MARKDOWN	markdown-table-formatter	3		0	0.21s
✅ REPOSITORY	checkov	yes		no	12.74s
✅ REPOSITORY	gitleaks	yes		no	1.6s
✅ REPOSITORY	git_diff	yes		no	0.07s
✅ REPOSITORY	grype	yes		no	13.01s
✅ REPOSITORY	secretlint	yes		no	0.94s
✅ REPOSITORY	trivy	yes		no	6.56s
✅ REPOSITORY	trivy-sbom	yes		no	2.0s
✅ REPOSITORY	trufflehog	yes		no	3.66s
✅ XML	xmllint	15		0	0.01s
✅ YAML	prettier	14		0	0.75s
✅ YAML	v8r	14		0	10.46s
✅ YAML	yamllint	14		0	0.42s

See detailed report in MegaLinter reports

MegaLinter is graciously provided by

[github-actions]

Test Results

2 937 tests  ±0   2 937 ✅ ±0   8s ⏱️ -1s
    1 suites ±0       0 💤 ±0 
    1 files   ±0       0 ❌ ±0 

Results for commit 333a7b1. ± Comparison against base commit 1f88c51.

♻️ This comment has been updated with latest results.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 42.55%. Comparing base (1f88c51) to head (333a7b1).
Report is 2 commits behind head on master.

Additional details and impacted files

@@           Coverage Diff           @@
##           master    #1026   +/-   ##
=======================================
  Coverage   42.55%   42.55%           
=======================================
  Files          38       38           
  Lines        3090     3090           
  Branches      456      456           
=======================================
  Hits         1315     1315           
  Misses       1741     1741           
  Partials       34       34           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[dorssel]

@dependabot rebase