🩹[Patch]: Workflow improvements (#9)

This release makes significant changes to the project's GitHub workflows
and configuration files, focusing on improving workflow security,
updating dependencies, and streamlining release and linter processes.
Key changes include replacing and renaming release workflows, pinning
action versions for better security, disabling certain linter checks,
and updating Dependabot settings.

- Fixes #8

**Workflow and Release Management:**

* Added a new `Release.yml` workflow to handle releases, replacing the
previous `Auto-Release.yml` workflow which has been removed. The new
workflow uses `PSModule/Release-GHRepository` and is triggered on pull
requests affecting `action.yml`.
* Removed the custom release configuration file `.github/release.yml`,
which categorized and excluded certain changes from release notes.

**Workflow Security and Maintenance:**

* Updated workflow files to pin `actions/checkout` and
`super-linter/super-linter` to specific commit SHAs for improved
security and reproducibility. Also set `persist-credentials: false` to
reduce token exposure risk.
* Disabled `VALIDATE_BIOME_FORMAT` and `VALIDATE_JSCPD` in the linter
workflow to streamline linting and removed the `.jscpd.json`
configuration file.

**Dependency Management:**

* Updated Dependabot configuration to check for updates daily instead of
weekly and introduced a cooldown period of 7 days between updates.

Author: MariusStorhaug

.github/dependabot.yml

@@ -11,4 +11,6 @@ updates:
       - dependencies
       - github-actions
     schedule:
-      interval: weekly
+      interval: daily
+    cooldown:
+      default-days: 7

.github/linters/.jscpd.json

@@ -27,7 +27,9 @@ jobs:
     name: '${{ matrix.os }} - [${{ matrix.version }}]'
     steps:
       - name: Checkout repo
-        uses: actions/checkout@v6
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+        with:
+          persist-credentials: false
 
       - name: Action-Test
         uses: ./

.github/release.yml

@@ -19,14 +19,17 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout repo
-        uses: actions/checkout@v6
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           fetch-depth: 0
+          persist-credentials: false
 
       - name: Lint code base
-        uses: super-linter/super-linter@latest
+        uses: super-linter/super-linter@d5b0a2ab116623730dd094f15ddc1b6b25bf7b99 # v8.3.2
         env:
           GITHUB_TOKEN: ${{ github.token }}
+          VALIDATE_BIOME_FORMAT: false
+          VALIDATE_JSCPD: false
           VALIDATE_JSON_PRETTIER: false
           VALIDATE_MARKDOWN_PRETTIER: false
           VALIDATE_YAML_PRETTIER: false

.github/workflows/Action-Test.yml

@@ -0,0 +1,38 @@
+name: Release
+
+run-name: "Release - [${{ github.event.pull_request.title }} #${{ github.event.pull_request.number }}] by @${{ github.actor }}"
+
+on:
+  pull_request:
+    branches:
+      - main
+    types:
+      - closed
+      - opened
+      - reopened
+      - synchronize
+      - labeled
+    paths:
+      - 'action.yml'
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
+permissions:
+  contents: write
+  pull-requests: write
+
+jobs:
+  Release:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout Code
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+        with:
+          persist-credentials: false
+
+      - name: Release
+        uses: PSModule/Release-GHRepository@88c70461c8f16cc09682005bcf3b7fca4dd8dc1a # v2.0.1
+        env:
+          GITHUB_TOKEN: ${{ github.token }}

.github/workflows/Auto-Release.yml

@@ -27,8 +27,8 @@ jobs:
 
 ## Inputs
 
-| Input   | Required | Default | Description |
-| ------- | -------- | ------- | ----------- |
+| Input | Required | Default | Description |
+| ----- | -------- | ------- | ----------- |
 | `Version` | `false` | `latest` | Desired PowerShell Core version (e.g. `7.4.1`). Use `latest` to install the newest stable release. |
 
 ## Secrets