Upgrade GitHub Actions to latest versions

[salmanmkc]

Summary

Upgrade GitHub Actions to their latest versions for improved features, bug fixes, and security updates.

Changes

Action	Old Version(s)	New Version	Release	Files
actions/attest-build-provenance	00014ed	977bb37	Release	build-docker.yml, release.yml
astral-sh/setup-uv	61cb8a9	803947b	Release	ci.yml, publish-docs.yml, publish.yml
docker/login-action	5e57cd1	c94ce9f	Release	build-docker.yml
j178/prek-action	9d6a309	564dda4	Release	ci.yml
taiki-e/install-action	81a2f66	650c5ca	Release	ci.yml, performance.yml

Why upgrade?

Keeping GitHub Actions up to date ensures:

• Security: Latest security patches and fixes
• Features: Access to new functionality and improvements
• Compatibility: Better support for current GitHub features
• Performance: Optimizations and efficiency improvements

Security Note

Actions that were previously pinned to commit SHAs remain pinned to SHAs (updated to the latest release SHA) to maintain the security benefits of immutable references.

Testing

These changes only affect CI/CD workflow configurations and should not impact application functionality. The workflows should be tested by running them on a branch before merging.

[Copilot]

Pull request overview

This pull request upgrades GitHub Actions to their latest versions to benefit from security patches, new features, and performance improvements. The updates maintain the security practice of pinning actions to commit SHAs while updating to newer releases.

Changes:

• Updated 5 GitHub Actions across 6 workflow files, all pinned to new commit SHAs with updated version tags
• All actions remain pinned to commit SHAs (not semantic versions) to maintain immutable references for security
• Updated versions include: actions/attest-build-provenance (v3.2.0), astral-sh/setup-uv (v7.2.1), docker/login-action (v3.7.0), j178/prek-action (v1.1.0), and taiki-e/install-action (v2.67.18)

Reviewed changes

Copilot reviewed 6 out of 6 changed files in this pull request and generated 6 comments.

Show a summary per file

File	Description
.github/workflows/release.yml	Updated actions/attest-build-provenance to v3.2.0 for artifact attestation
.github/workflows/publish.yml	Updated astral-sh/setup-uv to v7.2.1 for PyPI publishing workflow
.github/workflows/publish-docs.yml	Updated astral-sh/setup-uv to v7.2.1 for documentation publishing workflow
.github/workflows/performance.yml	Updated taiki-e/install-action to v2.67.18 for cargo-bloat installation
.github/workflows/ci.yml	Updated multiple actions: j178/prek-action to v1.1.0, taiki-e/install-action to v2.67.18 (9 occurrences), and astral-sh/setup-uv to v7.2.1 (3 occurrences)
.github/workflows/build-docker.yml	Updated docker/login-action to v3.7.0 (2 occurrences) and actions/attest-build-provenance to v3.2.0 for Docker image builds

[Copilot]

The spacing before the version comment should be consistent with the rest of the codebase. The existing convention in this repository uses a single space between the SHA and the comment (e.g., @sha # v1.0.0), but this change introduces two spaces. For consistency, this should use a single space like other action references in the workflow files.

[Copilot]

The spacing before the version comment should be consistent with the rest of the codebase. The existing convention in this repository uses a single space between the SHA and the comment (e.g., @sha # v1.0.0), but this change introduces two spaces. For consistency, this should use a single space like other action references in the workflow files.

[Copilot]

The spacing before the version comment should be consistent with the rest of the codebase. The existing convention in this repository uses a single space between the SHA and the comment (e.g., @sha # v1.0.0), but this change introduces two spaces. For consistency, this should use a single space like other action references in the workflow files.

[Copilot]

The spacing before the version comment should be consistent with the rest of the codebase. The existing convention in this repository uses a single space between the SHA and the comment (e.g., @sha # v1.0.0), but this change introduces two spaces. For consistency, this should use a single space like other action references in the workflow files.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 92.01%. Comparing base (4f718af) to head (f232031).

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #1529      +/-   ##
==========================================
- Coverage   92.02%   92.01%   -0.01%     
==========================================
  Files          89       89              
  Lines       18500    18500              
==========================================
- Hits        17024    17023       -1     
- Misses       1476     1477       +1     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[Copilot]

Copilot encountered an error and was unable to review this pull request. You can try again by re-requesting a review.

[j178]

Sorry, we don't do this manually, renovate will upgrade them automatically.