From 1ad176254411bb28123602d0b123baf4fca93d7c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 1 Dec 2025 10:24:06 +0000
Subject: [PATCH] Bump actions/github-script from 7 to 8

Bumps [actions/github-script](https://github.com/actions/github-script) from 7 to 8.
- [Release notes](https://github.com/actions/github-script/releases)
- [Commits](https://github.com/actions/github-script/compare/v7...v8)

---
updated-dependencies:
- dependency-name: actions/github-script
  dependency-version: '8'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/create-release.yml | 4 ++--
 .github/workflows/sonarcloud.yml     | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/create-release.yml b/.github/workflows/create-release.yml
index c20226f..de446bd 100644
--- a/.github/workflows/create-release.yml
+++ b/.github/workflows/create-release.yml
@@ -49,7 +49,7 @@ jobs:
           && !( contains(github.event.inputs.versionTag, 'alpha')
           || contains(github.event.inputs.versionTag, 'beta')
           || contains(github.event.inputs.versionTag, 'rc')) }}
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           github-token: ${{secrets.JOHNNY_Q5_REPORTS_TOKEN}}
           script: |
@@ -63,7 +63,7 @@ jobs:
           && ( contains(github.event.inputs.versionTag, 'alpha')
           || contains(github.event.inputs.versionTag, 'beta')
           || contains(github.event.inputs.versionTag, 'rc')) }}
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           github-token: ${{secrets.JOHNNY_Q5_REPORTS_TOKEN}}
           script: |
diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml
index f839125..1eab07e 100644
--- a/.github/workflows/sonarcloud.yml
+++ b/.github/workflows/sonarcloud.yml
@@ -21,7 +21,7 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@v5
       - name: Debug OIDC (get a token)
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const token = await core.getIDToken('sigstore'); // audience example