From 5fa677801d8a56570249a5a28b9565a976e6a05d Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 15 Apr 2026 00:14:30 +0000
Subject: [PATCH] GitHub Action: Bump the all-actions-dependencies group with 2
 updates

Bumps the all-actions-dependencies group with 2 updates: [softprops/action-gh-release](https://github.com/softprops/action-gh-release) and [actions/github-script](https://github.com/actions/github-script).


Updates `softprops/action-gh-release` from 2 to 3
- [Release notes](https://github.com/softprops/action-gh-release/releases)
- [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md)
- [Commits](https://github.com/softprops/action-gh-release/compare/v2...v3)

Updates `actions/github-script` from 8 to 9
- [Release notes](https://github.com/actions/github-script/releases)
- [Commits](https://github.com/actions/github-script/compare/v8...v9)

---
updated-dependencies:
- dependency-name: softprops/action-gh-release
  dependency-version: '3'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-actions-dependencies
- dependency-name: actions/github-script
  dependency-version: '9'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-actions-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/prepare-binaries.yml     | 4 ++--
 .github/workflows/validate-kek-updates.yml | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/prepare-binaries.yml b/.github/workflows/prepare-binaries.yml
index 4c7a941..f554e6f 100644
--- a/.github/workflows/prepare-binaries.yml
+++ b/.github/workflows/prepare-binaries.yml
@@ -87,7 +87,7 @@ jobs:
       if: startsWith(github.ref, 'refs/tags/')
 
     - name: Upload Firmware Release Archive
-      uses: softprops/action-gh-release@v2
+      uses: softprops/action-gh-release@v3
       if: startsWith(github.ref, 'refs/tags/') && !endsWith(github.event.release.tag_name, '-signed')
       with:
         files: ReleaseFirmwareArchive/*
@@ -98,7 +98,7 @@ jobs:
       if: startsWith(github.ref, 'refs/tags/')
 
     - name: Upload Signed Release Archive
-      uses: softprops/action-gh-release@v2
+      uses: softprops/action-gh-release@v3
       if: startsWith(github.ref, 'refs/tags/') && endsWith(github.event.release.tag_name, '-signed')
       with:
         files: ReleaseSignedArtifacts/*
diff --git a/.github/workflows/validate-kek-updates.yml b/.github/workflows/validate-kek-updates.yml
index e1079cc..397eac0 100644
--- a/.github/workflows/validate-kek-updates.yml
+++ b/.github/workflows/validate-kek-updates.yml
@@ -199,7 +199,7 @@ jobs:
     - name: Comment on PR
       if: steps.changed-files.outputs.has_changes == 'true' && failure() && steps.app-token.outputs.token
       continue-on-error: true
-      uses: actions/github-script@v8
+      uses: actions/github-script@v9
       with:
         github-token: ${{ steps.app-token.outputs.token }}
         script: |
@@ -236,7 +236,7 @@ jobs:
     - name: Update PR Comment on Success
       if: steps.changed-files.outputs.has_changes == 'true' && success() && steps.app-token.outputs.token
       continue-on-error: true
-      uses: actions/github-script@v8
+      uses: actions/github-script@v9
       with:
         github-token: ${{ steps.app-token.outputs.token }}
         script: |