🩹[Patch]: Workflow improvements

[MariusStorhaug]

This release makes significant changes to the project's GitHub workflows and configuration files, focusing on improving workflow security, updating dependencies, and streamlining release and linter processes. Key changes include replacing and renaming release workflows, pinning action versions for better security, disabling certain linter checks, and updating Dependabot settings.

• Fixes 🩹[Patch]: Configure Dependabot for daily schedule with 7-day cooldown #8

Workflow and Release Management:

• Added a new Release.yml workflow to handle releases, replacing the previous Auto-Release.yml workflow which has been removed. The new workflow uses PSModule/Release-GHRepository and is triggered on pull requests affecting action.yml.
• Removed the custom release configuration file .github/release.yml, which categorized and excluded certain changes from release notes.

Workflow Security and Maintenance:

• Updated workflow files to pin actions/checkout and super-linter/super-linter to specific commit SHAs for improved security and reproducibility. Also set persist-credentials: false to reduce token exposure risk.
• Disabled VALIDATE_BIOME_FORMAT and VALIDATE_JSCPD in the linter workflow to streamline linting and removed the .jscpd.json configuration file.

Dependency Management:

• Updated Dependabot configuration to check for updates daily instead of weekly and introduced a cooldown period of 7 days between updates.

[Copilot]

Pull request overview

This PR aims to configure Dependabot for more frequent checks with a cooldown period, but includes several undocumented changes. The main focus is updating the Dependabot schedule from weekly to daily with a 7-day cooldown configuration.

Changes:

• Modified Dependabot schedule interval from weekly to daily
• Added cooldown configuration with 7-day default
• Updated GitHub Actions to use commit SHA pinning in workflow files
• Removed .github/release.yml configuration file

Reviewed changes

Copilot reviewed 5 out of 5 changed files in this pull request and generated 2 comments.

Show a summary per file

File	Description
.github/dependabot.yml	Changed schedule interval to daily and added cooldown configuration
.github/workflows/Linter.yml	Pinned actions/checkout and super-linter to specific commit SHAs
.github/workflows/Auto-Release.yml	Pinned actions/checkout and PSModule/Auto-Release to specific commit SHAs
.github/workflows/Action-Test.yml	Pinned actions/checkout to specific commit SHA
.github/release.yml	Deleted release notes configuration file

Comments suppressed due to low confidence (1)

.github/release.yml:1

• The deletion of .github/release.yml is not mentioned in the PR description. This file configures automatically generated release notes, and its removal is a significant change that affects how releases are documented. The PR description should explain why this file is being removed and what the impact will be on the release process.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 6 out of 6 changed files in this pull request and generated 2 comments.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 7 out of 7 changed files in this pull request and generated 3 comments.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 8 out of 8 changed files in this pull request and generated 1 comment.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.