chore(deps): update koki-develop/github-actions-lint action to v1.6.0

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
koki-develop/github-actions-lint	action	minor	v1.5.0 -> v1.6.0

---

Release Notes

koki-develop/github-actions-lint (koki-develop/github-actions-lint)

v1.6.0

Compare Source

Features

• deps: update ghcr.io/koki-develop/github-actions-lint/zizmor docker tag to v0.4.0 (#​72) (c1d3dc2)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

Renovate PR Review Results

⚖️ Safety Assessment: ✅ Safe

🔍 Release Content Analysis

• Primary Change: Update of underlying zizmor Docker image from v1.13.0 to v0.4.0
• Dependency Updates: Minor updates to GitHub Actions dependencies (checkout, login-action, release-please-action)
• Breaking Changes: None identified in the release notes
• Security Fixes: No explicit security fixes mentioned, but updated security analysis tooling
• Documentation: Added workflow permissions documentation

🎯 Impact Scope Investigation

• Usage Location: Single file affected - .github/workflows/github-actions-lint.yml:30,42,56
• Impact Analysis:
  • Updates three action variants: actionlint, ghalint, and zizmor
  • All use the same commit hash 5ecd42b59803f14bfaa7ed0bfb8de8c1dc1b4c6d
  • No configuration changes required in the workflow file
  • No impact on other dependencies as this is an isolated GitHub Actions workflow
• Current Configuration: The workflow uses standard inputs that remain compatible:
  • action-path parameter for ghalint unchanged
  • github-token and persona parameters for zizmor unchanged

💡 Recommended Actions

• No Manual Migration Required: The update maintains full backward compatibility
• Safe to Auto-merge: All action interfaces remain consistent
• Monitoring: Monitor the next workflow run to ensure the updated zizmor tool functions correctly
• No Code Changes: No modifications needed to workflow configuration or other files

🔗 Reference Links

• Release v1.6.0
• Changes v1.5.0...v1.6.0

Generated by koki-develop/claude-renovate-review

---

🚫 Permission Denied Tool Executions

The following tool executions that Claude Code attempted were blocked due to insufficient permissions.
Consider adding them to allowed_tools if needed.

Run #19724993819 - 1 tool denied

Tool	Input
WebSearch	{"query":"zizmor v0.4.0 release notes github security analysis tool"}

Generated by koki-develop/claude-denied-tools