build(deps): bump peter-evans/create-issue-from-file from 5.0.1 to 6.0.0

[dependabot]

Bumps peter-evans/create-issue-from-file from 5.0.1 to 6.0.0.

Release notes

Sourced from peter-evans/create-issue-from-file's releases.

Create Issue From File v6.0.0

⚙️ Requires Actions Runner v2.327.1 or later if you are using a self-hosted runner for Node 24 support.

What's Changed

• Bump @​types/node from 18.19.50 to 18.19.53 by @​dependabot[bot] in peter-evans/create-issue-from-file#1717
• Bump @​vercel/ncc from 0.38.1 to 0.38.2 by @​dependabot[bot] in peter-evans/create-issue-from-file#1718
• Update distribution by @​actions-bot in peter-evans/create-issue-from-file#1727
• Bump @​actions/core from 1.10.1 to 1.11.0 by @​dependabot[bot] in peter-evans/create-issue-from-file#1733
• Bump @​types/node from 18.19.53 to 18.19.54 by @​dependabot[bot] in peter-evans/create-issue-from-file#1732
• Update distribution by @​actions-bot in peter-evans/create-issue-from-file#1742
• Bump @​types/node from 18.19.54 to 18.19.55 by @​dependabot[bot] in peter-evans/create-issue-from-file#1749
• Bump @​actions/core from 1.11.0 to 1.11.1 by @​dependabot[bot] in peter-evans/create-issue-from-file#1750
• Update distribution by @​actions-bot in peter-evans/create-issue-from-file#1759
• Bump @​types/node from 18.19.55 to 18.19.56 by @​dependabot[bot] in peter-evans/create-issue-from-file#1764
• Bump @​types/node from 18.19.56 to 18.19.59 by @​dependabot[bot] in peter-evans/create-issue-from-file#1769
• Bump @​types/node from 18.19.59 to 18.19.63 by @​dependabot[bot] in peter-evans/create-issue-from-file#1774
• Bump @​types/node from 18.19.63 to 18.19.64 by @​dependabot[bot] in peter-evans/create-issue-from-file#1779
• Bump @​vercel/ncc from 0.38.2 to 0.38.3 by @​dependabot[bot] in peter-evans/create-issue-from-file#1784
• Bump prettier from 3.3.3 to 3.4.1 by @​dependabot[bot] in peter-evans/create-issue-from-file#1789
• Bump @​types/node from 18.19.64 to 18.19.67 by @​dependabot[bot] in peter-evans/create-issue-from-file#1790
• Bump prettier from 3.4.1 to 3.4.2 by @​dependabot[bot] in peter-evans/create-issue-from-file#1799
• Bump @​types/node from 18.19.67 to 18.19.68 by @​dependabot[bot] in peter-evans/create-issue-from-file#1804
• Bump @​types/node from 18.19.68 to 18.19.69 by @​dependabot[bot] in peter-evans/create-issue-from-file#1809
• Bump @​types/node from 18.19.69 to 18.19.70 by @​dependabot[bot] in peter-evans/create-issue-from-file#1814
• Bump @​types/node from 18.19.70 to 18.19.71 by @​dependabot[bot] in peter-evans/create-issue-from-file#1820
• Bump eslint-plugin-prettier from 5.2.1 to 5.2.2 by @​dependabot[bot] in peter-evans/create-issue-from-file#1821
• Bump eslint-plugin-prettier from 5.2.2 to 5.2.3 by @​dependabot[bot] in peter-evans/create-issue-from-file#1830
• Bump @​types/node from 18.19.71 to 18.19.74 by @​dependabot[bot] in peter-evans/create-issue-from-file#1831
• Bump @​types/node from 18.19.74 to 18.19.75 by @​dependabot[bot] in peter-evans/create-issue-from-file#1840
• Bump prettier from 3.4.2 to 3.5.1 by @​dependabot[bot] in peter-evans/create-issue-from-file#1846
• Bump @​types/node from 18.19.75 to 18.19.76 by @​dependabot[bot] in peter-evans/create-issue-from-file#1845
• Bump @​octokit/request-error and @​actions/github by @​dependabot[bot] in peter-evans/create-issue-from-file#1855
• Update distribution by @​actions-bot in peter-evans/create-issue-from-file#1860
• Bump @​octokit/plugin-paginate-rest from 9.2.1 to 9.2.2 by @​dependabot[bot] in peter-evans/create-issue-from-file#1865
• Update distribution by @​actions-bot in peter-evans/create-issue-from-file#1870
• Bump prettier from 3.5.1 to 3.5.2 by @​dependabot[bot] in peter-evans/create-issue-from-file#1875
• Bump @​octokit/request from 8.4.0 to 8.4.1 by @​dependabot[bot] in peter-evans/create-issue-from-file#1880
• Update distribution by @​actions-bot in peter-evans/create-issue-from-file#1885
• Bump @​types/node from 18.19.76 to 18.19.79 by @​dependabot[bot] in peter-evans/create-issue-from-file#1893
• Bump prettier from 3.5.2 to 3.5.3 by @​dependabot[bot] in peter-evans/create-issue-from-file#1894
• Bump @​types/node from 18.19.79 to 18.19.80 by @​dependabot[bot] in peter-evans/create-issue-from-file#1903
• Bump @​types/node from 18.19.80 to 18.19.81 by @​dependabot[bot] in peter-evans/create-issue-from-file#1908
• Bump @​types/node from 18.19.81 to 18.19.84 by @​dependabot[bot] in peter-evans/create-issue-from-file#1913
• Bump eslint-plugin-prettier from 5.2.3 to 5.2.5 by @​dependabot[bot] in peter-evans/create-issue-from-file#1914
• Bump eslint-plugin-prettier from 5.2.5 to 5.2.6 by @​dependabot[bot] in peter-evans/create-issue-from-file#1924
• Bump @​types/node from 18.19.84 to 18.19.86 by @​dependabot[bot] in peter-evans/create-issue-from-file#1923
• Bump @​types/node from 18.19.86 to 18.19.87 by @​dependabot[bot] in peter-evans/create-issue-from-file#1933
• Bump eslint-plugin-prettier from 5.2.6 to 5.4.0 by @​dependabot[bot] in peter-evans/create-issue-from-file#1938
• Bump @​types/node from 18.19.87 to 18.19.100 by @​dependabot[bot] in peter-evans/create-issue-from-file#1939
• Bump @​actions/github from 6.0.0 to 6.0.1 by @​dependabot[bot] in peter-evans/create-issue-from-file#1940

... (truncated)

Commits

• fca9117 v6 (#2082)
• b6ec9cb Bump @​types/node from 18.19.124 to 18.19.127 (#2073)
• c30fbe4 Bump @​vercel/ncc from 0.38.3 to 0.38.4 (#2072)
• 6c3e77c Bump @​types/node from 18.19.123 to 18.19.124 (#2065)
• cdb4e84 Bump actions/setup-node from 4 to 5 (#2062)
• b1e467e Bump @​types/node from 18.19.121 to 18.19.123 (#2057)
• b7a1ca8 Bump actions/checkout from 4 to 5 (#2052)
• 376c7d8 Bump eslint-plugin-prettier from 5.5.3 to 5.5.4 (#2047)
• 433a878 Bump actions/download-artifact from 4 to 5 (#2042)
• a56a9d1 Bump @​types/node from 18.19.120 to 18.19.121 (#2037)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codacy-production]

Up to standards ✅

🟢 Issues 0 issues

Results:
0 new issues

View in Codacy

AI Reviewer: first review requested successfully. AI can make mistakes. Always validate suggestions.

_{TIP This summary will be updated as you push new changes.}

[codacy-production]

Pull Request Overview

While the version bump itself is straightforward, the upgrade to v6.0.0 introduces two breaking changes that require manual configuration updates: the need for explicit issues: write permissions and a new default failure behavior when input files are empty.

Furthermore, the existing workflow logic for detecting job failures via custom environment variables is currently non-functional, meaning the issue creation step would be skipped even if permissions were correct. These issues must be addressed to ensure the scheduled reports continue to function after the upgrade.

Test suggestions

• Verify issue creation for 'Broken link report' succeeds on workflow failure with version 6.0.0.
• Verify issue creation for 'Missing supported tools report' succeeds on workflow failure with version 6.0.0.
• Verify issue creation for 'Missing security tools report' succeeds on workflow failure with version 6.0.0.

Prompt proposal for missing tests

Consider implementing these tests if applicable:
1. Verify issue creation for 'Broken link report' succeeds on workflow failure with version 6.0.0.
2. Verify issue creation for 'Missing supported tools report' succeeds on workflow failure with version 6.0.0.
3. Verify issue creation for 'Missing security tools report' succeeds on workflow failure with version 6.0.0.

_{TIP Improve review quality by adding custom instructions
TIP How was this review? Give us feedback}

[codacy-production]

_{🔴 HIGH RISK}

Upgrading to v6.0.0 requires the issues: write permission for the GITHUB_TOKEN. Furthermore, the if condition on line 24 is broken as env.lychee_exit_code is undefined and the step will be skipped on job failure. Try running the following prompt in your coding agent: > Add permissions: issues: write to the workflow and update the check-broken-links job to use continue-on-error: true with a corrected if: failure() condition for issue creation.

[codacy-production]

_{🟡 MEDIUM RISK}

Starting in v6.0.0, this action fails if the file at content-filepath is empty. If the python script fails without output, this step will crash the workflow. Try running the following prompt in your coding agent: > Ensure the create-issue-from-file step in the check-supported-tools and check-security-tools jobs only runs when the output file is not empty.