Update mikefarah/yq action from v4.44.6 to v4.45.1 (.github/workflows/release-x-manual-helm-chart.yml)

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
mikefarah/yq	action	minor	v4.44.6 -> v4.45.1

---

Release Notes

mikefarah/yq (mikefarah/yq)

v4.45.1: - Create parent directories when --split-exp is used!

Compare Source

• Create parent directories when --split-exp is used, Thanks @​rudo-thomas
  • Bumped dependencies

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[dryrunsecurity]

DryRun Security Summary

The pull request updates the GitHub Actions workflow for the DefectDojo Helm chart release by upgrading the yq action and pinning the Docker image version, which represents a routine maintenance update with no significant security concerns.

Expand for full summary

Summary:

The changes in this pull request are focused on updating the GitHub Actions workflow responsible for automating the release process of the DefectDojo Helm chart. The key changes include upgrading the mikefarah/yq action to the latest version and pinning the Docker image version used in the Helm chart deployment.

From an application security perspective, these changes do not introduce any major security concerns. The yq tool is a widely used and trusted YAML processing tool, and the version upgrade is a routine maintenance update. Similarly, the change to pin the Docker image version is a common practice in software deployment and does not introduce any new functionality or code changes that could impact the security of the application.

Overall, this pull request appears to be a routine maintenance update to the Helm chart release workflow, and the changes do not raise any significant security concerns.

Files Changed:

• .github/workflows/release-x-manual-helm-chart.yml: This file contains the GitHub Actions workflow responsible for automating the release process of the DefectDojo Helm chart. The key changes in this pull request are:
  1. Upgrading the mikefarah/yq action to version 4.45.1, which ensures that the latest features and bug fixes are available for the YAML processing tool used in the workflow.
  2. Pinning the Docker image version used in the Helm chart deployment to the specified release number, ensuring that the correct version of the DefectDojo application is deployed.

Code Analysis

We ran 9 analyzers against 1 file and 0 analyzers had findings. 9 analyzers had no findings.

View PR in the DryRun Dashboard.

[mtesauro]

Approved