chore(deps): update all-ci-dependencies #890

	name: Coverage

	on:
	push:
	branches:
	- "main"
	pull_request:
	types:
	- opened
	- reopened
	- synchronize
	branches:
	- "main"

	concurrency:
	group: ${{ github.workflow }}-${{ github.ref }}
	cancel-in-progress: true

	jobs:
	sast:
	name: "SAST"
	runs-on: ubuntu-24.04
	env:
	GO111MODULE: on
	permissions:
	security-events: write
	actions: read
	contents: read
	steps:
	- name: Checkout Source
	uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
	- uses: actions/setup-go@4dc6199c7b1a012772edbd06daecab0f50c9053c # v6.1.0
	with:
	go-version-file: 'go.mod'
	- name: Run Gosec Security Scanner
	uses: securego/gosec@6be2b51fd78feca86af91f5186b7964d76cb1256 # v2.22.10
	with:
	args: '-no-fail -fmt sarif -out gosec.sarif ./...'
	- name: Upload SARIF file
	uses: github/codeql-action/upload-sarif@c1a2b73420f0c02efb863cc6921c531bc1a54f4f
	with:
	sarif_file: gosec.sarif
	unit_tests:
	name: "Unit tests"
	runs-on: ubuntu-24.04
	steps:
	- name: Checkout
	uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
	- uses: actions/setup-go@4dc6199c7b1a012772edbd06daecab0f50c9053c # v6.1.0
	with:
	go-version-file: 'go.mod'
	- name: Unit Test
	run: make test
	- name: Check secret
	id: checksecret
	uses: ./.github/actions/exists
	with:
	value: ${{ secrets.CODECOV_TOKEN }}
	- name: Upload Report to Codecov
	if: ${{ steps.checksecret.outputs.result == 'true' }}
	uses: codecov/codecov-action@5a1091511ad55cbe89839c7260b706298ca349f7 # v5.5.1
	with:
	token: ${{ secrets.CODECOV_TOKEN }}
	slug: peak-scale/sops-operator
	files: ./coverage.out
	fail_ci_if_error: true
	verbose: true

Provide feedback