From de392d1ba7711b2ebd1f925ba9a8f44b103cb883 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 13 Apr 2026 06:20:12 +0000
Subject: [PATCH] ci(deps): bump actions/github-script from 8 to 9

Bumps [actions/github-script](https://github.com/actions/github-script) from 8 to 9.
- [Release notes](https://github.com/actions/github-script/releases)
- [Commits](https://github.com/actions/github-script/compare/v8...v9)

---
updated-dependencies:
- dependency-name: actions/github-script
  dependency-version: '9'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/bcos.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/bcos.yml b/.github/workflows/bcos.yml
index 96f53b8f..bcdac2d1 100644
--- a/.github/workflows/bcos.yml
+++ b/.github/workflows/bcos.yml
@@ -19,7 +19,7 @@ jobs:
     steps:
       - name: Detect BCOS tier
         id: detect
-        uses: actions/github-script@v8
+        uses: actions/github-script@v9
         with:
           script: |
             if (context.eventName === 'push') {
@@ -113,7 +113,7 @@ jobs:
 
       - name: Comment trust score on PR
         if: github.event_name == 'pull_request' && github.event.pull_request.head.repo.full_name == github.repository
-        uses: actions/github-script@v8
+        uses: actions/github-script@v9
         with:
           script: |
             const score = '${{ steps.scan.outputs.score }}';