🩹[Patch]: Workflow improvements (#9)

This release updates and improves several aspects of the project's
GitHub Actions workflows and related configuration files. The main
changes include refactoring the release workflow for clarity and
security, updating dependencies and action versions to use specific
commit SHAs, and cleaning up unused or redundant configuration files.

**Workflow and CI/CD Improvements:**

* Renamed `.github/workflows/Auto-Release.yml` to
`.github/workflows/Release.yml`, updated its trigger to `pull_request`
(instead of `pull_request_target`), restricted its scope to changes in
`action.yml` and `src/**`, and changed the main job and step names from
`Auto-Release` to `Release`. Also replaced the action used for releases
to
`PSModule/Release-GHRepository@88c70461c8f16cc09682005bcf3b7fca4dd8dc1a`
and updated the checkout action to a specific SHA with credentials
disabled for improved security.
* Updated the `Action-Test` and `Linter` workflows to use specific
commit SHAs for the `actions/checkout` and `super-linter/super-linter`
actions, and set `persist-credentials: false` for security. Also, in the
`Linter` workflow, disabled some validators and set additional
environment variables.

**Dependency and Automation Configuration:**

* Changed the Dependabot update schedule from weekly to daily and added
a cooldown period of 7 days between updates.

**Configuration Cleanup:**

* Removed the `.github/linters/.jscpd.json` file, which is no longer
needed.
* Removed the `.github/release.yml` configuration for automatically
generated release notes, as this is now handled by the updated release
workflow.

**Other Notable Changes:**

* Updated the `action.yml` to reference the new script location at
`src/main.ps1` instead of `scripts/main.ps1`.

Author: MariusStorhaug

.github/dependabot.yml

@@ -11,4 +11,6 @@ updates:
       - dependencies
       - github-actions
     schedule:
-      interval: weekly
+      interval: daily
+    cooldown:
+      default-days: 7

.github/linters/.jscpd.json

@@ -23,7 +23,9 @@ jobs:
     steps:
       # Need to check out as part of the test, as its a local action
       - name: Checkout repo
-        uses: actions/checkout@v6
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+        with:
+          persist-credentials: false
 
       - name: Action-Test
         uses: ./

.github/release.yml

@@ -19,14 +19,17 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout repo
-        uses: actions/checkout@v6
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           fetch-depth: 0
+          persist-credentials: false
 
       - name: Lint code base
-        uses: super-linter/super-linter@latest
+        uses: super-linter/super-linter@d5b0a2ab116623730dd094f15ddc1b6b25bf7b99 # v8.3.2
         env:
           GITHUB_TOKEN: ${{ github.token }}
+          VALIDATE_BIOME_FORMAT: false
+          VALIDATE_JSCPD: false
           VALIDATE_JSON_PRETTIER: false
           VALIDATE_MARKDOWN_PRETTIER: false
           VALIDATE_YAML_PRETTIER: false

.github/workflows/Action-Test.yml

@@ -1,9 +1,9 @@
-name: Auto-Release
+name: Release
 
-run-name: "Auto-Release - [${{ github.event.pull_request.title }} #${{ github.event.pull_request.number }}] by @${{ github.actor }}"
+run-name: "Release - [${{ github.event.pull_request.title }} #${{ github.event.pull_request.number }}] by @${{ github.actor }}"
 
 on:
-  pull_request_target:
+  pull_request:
     branches:
       - main
     types:
@@ -12,6 +12,9 @@ on:
       - reopened
       - synchronize
       - labeled
+    paths:
+      - 'action.yml'
+      - 'src/**'
 
 concurrency:
   group: ${{ github.workflow }}-${{ github.ref }}
@@ -22,13 +25,15 @@ permissions:
   pull-requests: write # Required to create comments on the PRs
 
 jobs:
-  Auto-Release:
+  Release:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout Code
-        uses: actions/checkout@v6
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+        with:
+          persist-credentials: false
 
-      - name: Auto-Release
-        uses: PSModule/Auto-Release@v1
+      - name: Release
+        uses: PSModule/Release-GHRepository@88c70461c8f16cc09682005bcf3b7fca4dd8dc1a # v2.0.1
         env:
           GITHUB_TOKEN: ${{ github.token }}

.github/workflows/Linter.yml

@@ -12,4 +12,4 @@ runs:
       shell: pwsh
       run: |
         # Install-PSModuleHelpers
-        ${{ github.action_path }}/scripts/main.ps1
+        ${{ github.action_path }}/src/main.ps1