build(deps): bump microsoft/security-devops-action from 1.6.0 to 1.7.2

[dependabot]

Bumps microsoft/security-devops-action from 1.6.0 to 1.7.2.

Release notes

Sourced from microsoft/security-devops-action's releases.

v1.7.2 - node10 backwards compatibility fix

v1.7.2 - 06/22/2023

Fixed

• Added try-catch best effort for gzip json response decompression from nuget.org
• Compile with nodenext moduleResolution so it implements a Promise resolver intead of yield on dynamic module resolution (node v13.2+)
  • Resolves node and node10 task runners

v1.7.0

Added

• The msdo-nuget-client.ts javascript nuget client
• Dependency on adm-zip
• Dependency on decompress-response

Changed

• Install the MSDO nuget package via javascript
  • Removes a dependency on dotnet to leverage restore to install the platform cross-platform
• Upgraded dependencies
  • azure-pipelines-task-lib to v4.3.1
  • azure-pipelines-tool-lib to v2.0.4
  • typescript to v5.1.3

Commits

• 19539f7 Merge pull request #63 from microsoft/release/vNext
• 34c497d v1.7.2 - upgrade to release package
• 0af17f1 Merge branch 'main' of https://github.com/microsoft/security-devops-action in...
• 6f502f3 v1.7.2-beta.1 - node resolution change for node10 support
• f0afd16 Merge branch 'main' of https://github.com/davidknise/security-devops-action i...
• 5e24da2 Fix templateanalyzer name in action.yml help documentation
• 1cbc902 Include explicit security permissions on the workflow and readme.
• 82e969e Merge branch 'main' of https://github.com/microsoft/security-devops-action
• 55bedea release/vNext (#60)
• 933ccef Merge branch 'release/vNext' of https://github.com/microsoft/security-devops-...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #82.