Update all dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
dawidd6/action-send-mail	action	major	v7 → v8
suzuki-shunsuke/github-action-renovate-config-validator	action	major	v1.1.1 → v2.0.0
trufflesecurity/trufflehog	action	patch	v3.92.4 → v3.92.5

---

Release Notes

dawidd6/action-send-mail (dawidd6/action-send-mail)

v8

Compare Source

What's Changed

• build(deps): bump @​actions/core from 2.0.1 to 2.0.2 by @​dependabot[bot] in #​247
• node_modules: update by @​dawidd6 in #​248
• build(deps): bump @​actions/core from 2.0.2 to 2.0.3 by @​dependabot[bot] in #​251
• build(deps): bump @​actions/glob from 0.5.0 to 0.5.1 by @​dependabot[bot] in #​249
• build(deps): bump nodemailer from 7.0.12 to 7.0.13 by @​dependabot[bot] in #​250
• build(deps): bump @​actions/glob from 0.5.1 to 0.6.1 by @​dependabot[bot] in #​253
• build(deps): bump @​actions/core from 2.0.3 to 3.0.0 by @​dependabot[bot] in #​252
• Convert CommonJS to ESM by @​Copilot in #​255
• Run npm ci --ignore-scripts to update dependencies by @​Copilot in #​254

New Contributors

• @​Copilot made their first contribution in #​255

Full Changelog: dawidd6/action-send-mail@v7...v8

suzuki-shunsuke/github-action-renovate-config-validator (suzuki-shunsuke/github-action-renovate-config-validator)

v2.0.0

Compare Source

⚠️ Breaking Change

#​1063 The action installs Node.js 24 by default to support the latest Renovate.
If you don't want to install it, please set the input node-version to none.

Fixes

#​1060 Install the latest Renovate by default @​deviantintegral

trufflesecurity/trufflehog (trufflesecurity/trufflehog)

v3.92.5

Compare Source

What's Changed

• [INS-206] Store Gitlab Project ID in secret location metadata by @​mustansir14 in #​4601
• [INS-242] Add more validations to Custom Detector config by @​mustansir14 in #​4642
• Fix syslog test failing due to hardcoded timestamp by @​MuneebUllahKhan222 in #​4646
• [INS-120] Increase code coverage for Postman's source scanItem function by @​MuneebUllahKhan222 in #​4648
• [INS-232] Fix S3 Source "panic: runtime error: index out of range" bug by @​mustansir14 in #​4610
• [INS-170] Unify JDBC URL Parsing Across Detector and Analyzer (Continued) by @​mustansir14 in #​4606
• Add exponential backoff retry logic in Twilio detector by @​shahzadhaider1 in #​4652
• Fix typo in help description for Postman API metric by @​shahzadhaider1 in #​4656
• Rework JWT detector to better block local IPs by @​bradlarsen in #​4607
• Gitlab Source: Backoff from Scan2 which is experimental to legacy pagination API call by @​kashifkhan0771 in #​4608
• fix: git commit date parsing for non-English locales by @​GLEF1X in #​4653
• fix: report accurate line numbers for chunked file scanning (#​1876) by @​GLEF1X in #​4615
• Add Postman API monthly request limit metric by @​shahzadhaider1 in #​4667
• [INS-243] Fix jdbc detector detecting incomplete connection string and fixed invalid… by @​MuneebUllahKhan222 in #​4636

New Contributors

• @​GLEF1X made their first contribution in #​4653

Full Changelog: trufflesecurity/trufflehog@v3.92.4...v3.92.5

---

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

---

This change is 

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
actions/dawidd6/action-send-mail	afe978662944c6805dd197bac88b27acb0bda55a	🟢 4	Details Check Score Reason Packaging ⚠️ -1 packaging workflow not detected Code-Review ⚠️ 0 Found 0/15 approved changesets -- score normalized to 0 Maintained 🟢 9 11 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 9 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Security-Policy ⚠️ 0 security policy file not detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Binary-Artifacts 🟢 8 binaries present in source code License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities 🟢 9 1 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
actions/trufflesecurity/trufflehog	116e7171542d2f1dad8810f00dcfacbe0b809183	🟢 7.1	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed Security-Policy 🟢 9 security policy file detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Binary-Artifacts 🟢 9 binaries present in source code Signed-Releases 🟢 8 5 out of the last 5 releases have a total of 5 signed artifacts. Packaging 🟢 10 packaging workflow detected Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities 🟢 9 1 existing vulnerabilities detected SAST 🟢 10 SAST tool is run on all commits

Scanned Files

• .github/workflows/shared-secret-scan.yml