build(deps): bump step-security/harden-runner from 2.5.1 to 2.6.0

[dependabot]

Bumps step-security/harden-runner from 2.5.1 to 2.6.0.

Release notes

Sourced from step-security/harden-runner's releases.

v2.6.0

What's Changed

Release v2.6.0 by @​varunsh-coder in step-security/harden-runner#346

This release adds support for self-hosted Virtual Machine runners (e.g. on EC2).

• Both ephemeral and persistent self-hosted VM runners are supported
• Documentation: https://docs.stepsecurity.io/harden-runner/how-tos/enable-runtime-security-vm

Full Changelog: step-security/harden-runner@v2...v2.6.0

Commits

• 1b05615 Release v2.6.0 (#346)
• 398bb08 Merge pull request #343 from step-security/dependabot/github_actions/actions/...
• 0c6ab70 Merge pull request #344 from step-security/update-readme-2
• e8c0b52 Update README.md
• 3f86cc6 Bump actions/checkout from 4.0.0 to 4.1.0
• 4a1e83c Merge pull request #341 from step-security/dependabot/github_actions/actions/...
• 10e0a22 Merge pull request #340 from step-security/dependabot/github_actions/actions/...
• 20779e7 Merge pull request #338 from step-security/dependabot/github_actions/actions/...
• ad05d1b Bump actions/dependency-review-action from 2.5.1 to 3.1.0
• 1223983 Bump actions/upload-artifact from 3.1.2 to 3.1.3
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

All modified lines are covered by tests ✅

Comparison is base (4545756) 94.45% compared to head (8068862) 94.45%.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #1094   +/-   ##
=======================================
  Coverage   94.45%   94.45%           
=======================================
  Files          83       83           
  Lines        3518     3518           
  Branches      603      603           
=======================================
  Hits         3323     3323           
  Misses        189      189           
  Partials        6        6           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[github-actions]

🎉 This PR is included in version 2.12.1 🎉

The release is available on:

• GitHub release
• v2.12.1

Your semantic-release bot 📦🚀