build(deps): bump github.com/rhysd/actionlint from 1.7.4 to 1.7.7

[dependabot]

Bumps github.com/rhysd/actionlint from 1.7.4 to 1.7.7.

Release notes

Sourced from github.com/rhysd/actionlint's releases.

v1.7.7

• Support runner labels for Linux arm64 hosted runners. (#503, #504, thanks @​martincostello)
  • ubuntu-24.04-arm
  • ubuntu-22.04-arm
• Update Go dependencies to the latest.
• Update the popular actions data set to the latest.
• Add Linux arm64 job to our CI workflow. Now actionlint is tested on the platform. (#507, thanks @​cclauss)

v1.7.6

• Fix using contexts at specific workflow keys is incorrectly reported as not allowed. Affected workflow keys are as follows. (#495, #497, #498, #500)
  • jobs.<job_id>.steps.with.args
  • jobs.<job_id>.steps.with.entrypoint
  • jobs.<job_id>.services.<service_id>.env
• Update Go dependencies to the latest.

v1.7.5

• Strictly check available contexts in ${{ }} placeholders following the 'Context availability' table in the official document.
  • For example, jobs.<job_id>.defaults.run.shell allows env context but shell workflow keys in other places allow no context.

    defaults:
      run:
        # ERROR: No context is available here
        shell: ${{ env.SHELL }}
    jobs:
    test:
    runs-on: ubuntu-latest
    defaults:
    run:
    # OK: 'env' context is available here
    shell: ${{ env.SHELL }}
    steps:
    - run: echo hello
    # ERROR: No context is available here
    shell: ${{ env.SHELL}}

• Check a string literal passed to fromJSON() call. This pattern is popular to create array or object constants because GitHub Actions does not provide the literal syntax for them. See the document for more details. (#464)

  jobs:
    test:
      # ERROR: Key 'mac' does not exist in the object returned by the fromJSON()
      runs-on: ${{ fromJSON('{"win":"windows-latest","linux":"ubuntul-latest"}')['mac'] }}
      steps:
        - run: echo This is a special branch!
          # ERROR: Broken JSON string passed to fromJSON.
          if: contains(fromJSON('["main","release","dev"'), github.ref_name)

• Allow passing command arguments to -shellcheck argument. (#483, thanks @​anuraaga)
  • This is useful when you want to use alternative build of shellcheck like go-shellcheck.

... (truncated)

Changelog

Sourced from github.com/rhysd/actionlint's changelog.

v1.7.7 - 2025-01-19

• Support runner labels for Linux arm64 hosted runners. (#503, #504, thanks @​martincostello)
  • ubuntu-24.04-arm
  • ubuntu-22.04-arm
• Update Go dependencies to the latest.
• Update the popular actions data set to the latest.
• Add Linux arm64 job to the CI workflow. Now actionlint is tested on the platform. (#507, thanks @​cclauss)

[Changes][v1.7.7]

v1.7.6 - 2025-01-04

• Using contexts at specific workflow keys is incorrectly reported as not allowed. Affected workflow keys are as follows. (#495, #497, #498, #500)
  • jobs.<job_id>.steps.with.args
  • jobs.<job_id>.steps.with.entrypoint
  • jobs.<job_id>.services.<service_id>.env
• Update Go dependencies to the latest.

[Changes][v1.7.6]

v1.7.5 - 2024-12-28

• Strictly check available contexts in ${{ }} placeholders following the 'Context availability' table in the official document.
  • For example, jobs.<job_id>.defaults.run.shell allows env context but shell workflow keys in other places allow no context.

    defaults:
      run:
        # ERROR: No context is available here
        shell: ${{ env.SHELL }}
    jobs:
    test:
    runs-on: ubuntu-latest
    defaults:
    run:
    # OK: 'env' context is available here
    shell: ${{ env.SHELL }}
    steps:
    - run: echo hello
    # ERROR: No context is available here
    shell: ${{ env.SHELL}}

• Check a string literal passed to fromJSON() call. This pattern is popular to create array or object constants because GitHub Actions does not provide the literal syntax for them. See the document for more details. (#464)

  jobs:

... (truncated)

Commits

• 03d0035 bump up version to v1.7.7
• 2490f0e update Go dependencies
• f1a56d4 Merge pull request #507 from cclauss/patch-1
• af58b2e Run unit test GitHub Action on an ARM processor
• 5c31ede Merge pull request #503 from martincostello/arm64
• 9058a06 Support ARM64 runners
• 6a0aa1c Merge pull request #502 from rhysd/ci/12720102465
• 4c237b6 update generated files by go generate on CI
• 4e7a330 update playground dependencies to the latest
• 1a8f391 update changelog for v1.7.6 changes
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[justaugustus]

@dependabot rebase

[justaugustus]

@dependabot merge