chore(deps): update all-ci-dependencies (major) #894

	name: Coverage

	on:
	push:
	branches:
	- "main"
	pull_request:
	types:
	- opened
	- reopened
	- synchronize
	branches:
	- "main"

	concurrency:
	group: ${{ github.workflow }}-${{ github.ref }}
	cancel-in-progress: true

	jobs:
	sast:
	name: "SAST"
	runs-on: ubuntu-24.04
	env:
	GO111MODULE: on
	permissions:
	security-events: write
	actions: read
	contents: read
	steps:
	- name: Checkout Source
	uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
	- uses: actions/setup-go@7a3fe6cf4cb3a834922a1244abfce67bcef6a0c5 # v6.2.0
	with:
	go-version-file: 'go.mod'
	- name: Run Gosec Security Scanner
	uses: securego/gosec@c9453023c4e81ebdb6dde29e22d9cd5e2285fb16 # v2.22.8
	with:
	args: '-no-fail -fmt sarif -out gosec.sarif ./...'
	- name: Upload SARIF file
	uses: github/codeql-action/upload-sarif@6dee5bc9c165ca206a70f4e3d18271971cf6ff26
	with:
	sarif_file: gosec.sarif
	unit_tests:
	name: "Unit tests"
	runs-on: ubuntu-24.04
	steps:
	- name: Checkout
	uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
	- uses: actions/setup-go@7a3fe6cf4cb3a834922a1244abfce67bcef6a0c5 # v6.2.0
	with:
	go-version-file: 'go.mod'
	- name: Unit Test
	run: make test
	- name: Check secret
	id: checksecret
	uses: ./.github/actions/exists
	with:
	value: ${{ secrets.CODECOV_TOKEN }}
	- name: Upload Report to Codecov
	if: ${{ steps.checksecret.outputs.result == 'true' }}
	uses: codecov/codecov-action@18283e04ce6e62d37312384ff67231eb8fd56d24 # v5.4.3
	with:
	token: ${{ secrets.CODECOV_TOKEN }}
	slug: peak-scale/observability-tenancy
	files: ./coverage.out
	fail_ci_if_error: true
	verbose: true

Provide feedback