chore(deps): update all dependencies j:cdx-227 (major)

.github/actions/e2e-clean/action.yml

@@ -7,7 +7,7 @@ inputs:
 runs:
   using: composite
   steps:
-    - uses: actions/setup-node@64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c # v3
+    - uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4
       with:
         cache: 'npm'
         node-version-file: '.nvmrc'

.github/actions/e2e-login/action.yml

@@ -43,7 +43,7 @@ runs:
       run: |
         echo "${{ env.E2E_TOKEN_PASSPHRASE }}" | gpg -a --batch --passphrase-fd 0 --symmetric --cipher-algo AES256 --output encodedConfig $CLI_CONFIG_PATH
         echo "cliConfigJson=$(base64 -w 0 encodedConfig)" >> $GITHUB_OUTPUT
-    - uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3
+    - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4
       if: cancelled() || failure() || success()
       with:
         name: login-test-artifacts

.github/actions/e2e-run/action.yml

@@ -37,11 +37,11 @@ runs:
         git config --global core.autocrlf false
         git config --global core.eol lf
         npm i -g npm@10.8.2
-    - uses: actions/setup-node@64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c # v3
+    - uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4
       with:
         cache: 'npm'
         node-version-file: '.nvmrc'
-    - uses: actions/setup-python@57ded4d7d5e986d7296eab16560982c6dd7c923b # v4
+    - uses: actions/setup-python@42375524e23c412d93fb67b49958b491fce71c38 # v5
       with:
         cache: 'pip'
         python-version: '3.10'
@@ -77,7 +77,7 @@ runs:
         npm_config_registry: ${{inputs.npmRegistry}}
       working-directory: packages/cli-e2e
       run: npm run jest:ci -- ${{inputs.spec}} ${{inputs.flag}}
-    - uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3
+    - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4
       if: cancelled() || failure() || success()
       with:
         name: ${{inputs.os}}-${{inputs.node}}-${{inputs.spec}}-test-artifacts

.github/workflows/build.yml

@@ -208,14 +208,14 @@ jobs:
     name: Pre-release
     if: ${{ github.event_name == 'push' && github.ref == 'refs/heads/master' }}
     # needs: [e2e-report, lint, unit-tests]
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     environment: prerelease
     steps:
-      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
         with:
           # pulls all commits (needed for computing the next version)
           fetch-depth: 0
-      - uses: actions/setup-node@64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c # v3
+      - uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4
         with:
           registry-url: 'https://registry.npmjs.org'
       - name: Install dependencies

.github/workflows/codeql-analysis.yml

@@ -16,7 +16,7 @@ on:
 jobs:
   codeql:
     name: CodeQL
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     permissions:
       actions: read
       contents: read
@@ -29,7 +29,7 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
       - name: Initialize CodeQL
         uses: github/codeql-action/init@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3
         with:

.github/workflows/daily-e2e.yml

@@ -24,21 +24,21 @@ env:
 jobs:
   e2e-setup-login:
     name: End-to-end login
-    runs-on: 'ubuntu-20.04'
+    runs-on: 'ubuntu-24.04'
     timeout-minutes: 30
     outputs:
       cliConfigJson: ${{ steps.setup.outputs.cliConfigJson}}
     env:
       # ID of the test run to identify resources to teardown.
       TEST_RUN_ID: 'id${{ matrix.os }}-${{ github.sha }}-${{ github.run_attempt }}-dailyg'
     steps:
-      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
         with:
           # pulls all commits (needed for computing the next version)
           fetch-depth: 0
       - name: Checkout last tag
         run: git checkout $(git describe --abbrev=0 --tags)
-      - uses: actions/setup-node@64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c # v3
+      - uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4
         with:
           cache: 'npm'
           node-version-file: '.nvmrc'
@@ -75,7 +75,7 @@ jobs:
       COVEO_DISABLE_AUTOUPDATE: true
       CLI_CONFIG_JSON: ${{needs.e2e-setup-login.outputs.cliConfigJson}}
     steps:
-      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
         with:
           # pulls all commits (needed for computing the next version)
           fetch-depth: 0
@@ -93,13 +93,13 @@ jobs:
     name: End-to-end teardown
     if: ${{ always() }}
     needs: [e2e, e2e-setup-login]
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     env:
       # ID of the test run to identify resources to teardown.
       TEST_RUN_ID: '${{ github.sha }}-${{ github.run_attempt }}-dailyg'
       CLI_CONFIG_JSON: ${{needs.e2e-setup-login.outputs.cliConfigJson}}
     steps:
-      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
         with:
           # pulls all commits (needed for computing the next version)
           fetch-depth: 0
@@ -115,7 +115,7 @@ jobs:
     timeout-minutes: 30
     if: ${{ always() }}
     needs: e2e
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     environment: Daily Tests
     steps:
       - name: Check e2e matrix status

.github/workflows/delete-resources.yml

@@ -8,7 +8,7 @@ on:
 
 jobs:
   delete-resources:
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     environment: Cleaning
     env:
       ORG_ID: ${{ secrets.ORG_ID }}
@@ -17,8 +17,8 @@ jobs:
       PLATFORM_USER_NAME: ${{ secrets.PLATFORM_USER_NAME }}
       PLATFORM_USER_PASSWORD: ${{ secrets.PLATFORM_USER_PASSWORD }}
     steps:
-      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
-      - uses: actions/setup-node@64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c # v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4
         with:
           cache: 'npm'
           node-version-file: '.nvmrc'
@@ -41,7 +41,7 @@ jobs:
           node ./scripts/cleaning/delete-orgs.js     --olderThan 1d
         env:
           DISPLAY: ':1'
-      - uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3
+      - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4
         if: cancelled() || failure() || success()
         with:
           name: cleaning-artifacts

.github/workflows/git-lock-fail.yml

@@ -8,6 +8,6 @@ on:
 
 jobs:
   git-locked:
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     steps:
       - run: exit 1

.github/workflows/git-lock-success.yml

@@ -8,6 +8,6 @@ on:
 
 jobs:
   git-locked:
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     steps:
       - run: exit 0

.github/workflows/merge-bot.yml

@@ -9,10 +9,10 @@ on:
 jobs:
   Merge:
     if: ${{ github.event_name == 'pull_request' || github.event.issue.pull_request }}
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     env:
       GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
     steps:
-      - uses: actions/setup-node@64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c # v3
+      - uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4
       - name: Run the Bot
         run: npx @coveo/merge-bot

.github/workflows/package-lock-root-fail.yml

@@ -16,6 +16,6 @@ on:
 
 jobs:
   lockfile-outside-of-root:
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     steps:
       - run: exit 1

.github/workflows/package-lock-root-success.yml

@@ -14,6 +14,6 @@ on:
 
 jobs:
   lockfile-outside-of-root:
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     steps:
       - run: exit 0

.github/workflows/package-lock-version-fail.yml

@@ -12,8 +12,8 @@ on:
 
 jobs:
   lockfile-version:
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     steps:
-      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
       - name: Check lockfileVersion of all package-lock.json
         run: node scripts/check-lockfile-versions.js $(find ./ -xdev -wholename '**/package-lock.json')

.github/workflows/package-lock-version-succes.yml

@@ -12,6 +12,6 @@ on:
 
 jobs:
   lockfile-version:
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     steps:
       - run: exit 0

.github/workflows/pr-title-semantic-lint.yml

@@ -5,11 +5,11 @@ on:
     types: [opened, edited, synchronize, reopened]
 jobs:
   Lint:
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     env:
       GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
     steps:
-      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
       - name: Ensure PR Title is Semantic
         run: |
           npm ci

.github/workflows/prbot.yml

@@ -4,14 +4,14 @@ on:
 
 jobs:
   run-script:
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     env:
       GITHUB_CREDENTIALS: ${{ secrets.GITHUB_TOKEN }}
     steps:
-      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
         with:
           fetch-depth: 0
-      - uses: actions/setup-node@64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c # v3
+      - uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4
         with:
           cache: 'npm'
           node-version-file: '.nvmrc'

.github/workflows/release.yml

@@ -52,17 +52,17 @@ jobs:
   #       id: setup
   release-npm:
     environment: 'Release'
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     env:
       GITHUB_CREDENTIALS: ${{ secrets.CLI_RELEASE }} # Required to lock master
     outputs:
       shouldReleaseCli: $${{steps.release.outputs.shouldReleaseCli}}
     steps:
-      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
         with:
           # pulls all commits (needed for computing the next version)
           fetch-depth: 0
-      - uses: actions/setup-node@64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c # v3
+      - uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4
         with:
           registry-url: 'https://registry.npmjs.org'
           cache: 'npm'
@@ -83,7 +83,7 @@ jobs:
           git commit -m "patch"
           git format-patch HEAD^1 --output=release.patch
       - name: Upload artifacts
-        uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3
+        uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4
         with:
           name: npm-release
           path: |
@@ -226,21 +226,21 @@ jobs:
     # needs: [e2e, release-npm, unit-tests]
     needs: [release-npm]
     environment: 'Release'
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     env:
       GITHUB_CREDENTIALS: ${{ secrets.CLI_RELEASE }} # Required to lock master
     steps:
-      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
         with:
           # pulls all commits (needed for computing the next version)
           fetch-depth: 0
-      - uses: actions/setup-node@64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c # v3
+      - uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4
         with:
           registry-url: 'https://registry.npmjs.org'
           cache: 'npm'
           node-version-file: '.nvmrc'
       - name: Download NPM artifacts
-        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3
+        uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4
         with:
           name: npm-release
       - name: Apply & delete the patch
@@ -299,17 +299,17 @@ jobs:
             for: 'linux install kit'
 
     steps:
-      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
         with:
           # pulls all commits (needed for finding the @coveo/cli version to release)
           fetch-depth: 0
-      - uses: actions/setup-node@64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c # v3
+      - uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4
         with:
           registry-url: 'https://registry.npmjs.org'
           cache: 'npm'
           node-version-file: '.nvmrc'
       - name: Download artifacts
-        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3
+        uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4
         with:
           name: npm-release
       - name: Apply & delete the patch
@@ -400,33 +400,33 @@ jobs:
           mv "coveo-v${{env.CLI_VERSION}}-${{env.commitSHA1}}-arm64-signed.pkg" "coveo-v${{env.CLI_VERSION}}-${{env.commitSHA1}}-arm64.pkg"
           rm notarization-arm64.zip notarization-x64.zip
       - name: Upload binaries
-        uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3
+        uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4
         with:
           name: release-binaries
           path: ./packages/cli/core/dist/**/*
   release-github:
     needs: [release-git, release-npm, build-binaries]
     if: ${{needs.release-npm.outputs.shouldReleaseCli}}
     environment: 'Release'
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     env:
       GITHUB_CREDENTIALS: ${{ secrets.CLI_RELEASE }} # Required to lock master
     steps:
-      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
         with:
           # pulls all commits (needed for computing the next version)
           fetch-depth: 0
-      - uses: actions/setup-node@64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c # v3
+      - uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4
         with:
           registry-url: 'https://registry.npmjs.org'
           cache: 'npm'
           node-version-file: '.nvmrc'
       - name: Download NPM artifacts
-        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3
+        uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4
         with:
           name: npm-release
       - name: Download binaries artifacts
-        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3
+        uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4
         with:
           name: release-binaries
           path: release-binaries

.github/workflows/renovate-config-validator.yml

@@ -12,10 +12,10 @@ on:
 
 jobs:
   renovate-config:
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     steps:
-      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
-      - uses: actions/setup-node@64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c # v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4
         with:
           cache: 'npm'
           node-version-file: '.nvmrc'