From 6c8ac5be31667b23f86d0ebc1641978db8cfa2ec Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Tue, 16 Jun 2026 13:56:07 +0000
Subject: [PATCH] chore(deps): update github-actions-non-major

---
 .github/workflows/auto-changelog.yml          | 2 +-
 .github/workflows/docker-build.yml            | 8 ++++----
 .github/workflows/nightly-build.yml           | 2 +-
 .github/workflows/security-pr.yml             | 4 ++--
 .github/workflows/security-weekly-rebuild.yml | 6 +++---
 5 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/.github/workflows/auto-changelog.yml b/.github/workflows/auto-changelog.yml
index 9efc32522..7c6146c88 100644
--- a/.github/workflows/auto-changelog.yml
+++ b/.github/workflows/auto-changelog.yml
@@ -24,6 +24,6 @@ jobs:
         with:
           ref: ${{ github.event.workflow_run.head_sha || github.sha }}
       - name: Draft Release
-        uses: release-drafter/release-drafter@693d20e7c1ce1a81d3a41962f85914253b518449 # v7
+        uses: release-drafter/release-drafter@ed4bc48ec97379be2258e7b7ac2624a3e26ab809 # v7
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/docker-build.yml b/.github/workflows/docker-build.yml
index 4231cbe3f..47797ed0c 100644
--- a/.github/workflows/docker-build.yml
+++ b/.github/workflows/docker-build.yml
@@ -656,7 +656,7 @@ jobs:
           format: 'table'
           severity: 'CRITICAL,HIGH'
           exit-code: '0'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
         continue-on-error: true
 
       - name: Run Trivy vulnerability scanner (SARIF)
@@ -668,7 +668,7 @@ jobs:
           format: 'sarif'
           output: 'trivy-results.sarif'
           severity: 'CRITICAL,HIGH'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
         continue-on-error: true
 
       - name: Check Trivy SARIF exists
@@ -880,7 +880,7 @@ jobs:
           trivyignores: '.trivyignore'
           severity: 'CRITICAL,HIGH'
           exit-code: '0'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
 
       - name: Run Trivy scan on PR image (SARIF - blocking)
         id: trivy-scan
@@ -895,7 +895,7 @@ jobs:
           # Keep scanning strict for CRITICAL/HIGH; fail is enforced explicitly
           # at the end so SARIF upload and summaries still run.
           exit-code: '1'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
         continue-on-error: true
 
       - name: Check Trivy PR SARIF exists
diff --git a/.github/workflows/nightly-build.yml b/.github/workflows/nightly-build.yml
index 73b6975ec..77c903a5a 100644
--- a/.github/workflows/nightly-build.yml
+++ b/.github/workflows/nightly-build.yml
@@ -592,7 +592,7 @@ jobs:
           image-ref: ${{ env.GHCR_REGISTRY }}/${{ env.IMAGE_NAME }}:nightly@${{ needs.build-and-push-nightly.outputs.digest }}
           format: 'sarif'
           output: 'trivy-nightly.sarif'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
           trivyignores: '.trivyignore'
 
       - name: Upload Trivy results
diff --git a/.github/workflows/security-pr.yml b/.github/workflows/security-pr.yml
index 130b89e3c..9411a711a 100644
--- a/.github/workflows/security-pr.yml
+++ b/.github/workflows/security-pr.yml
@@ -373,7 +373,7 @@ jobs:
           format: 'sarif'
           output: 'trivy-binary-results.sarif'
           severity: 'CRITICAL,HIGH,MEDIUM'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
           trivyignores: '.trivyignore'
           config: 'trivy.yaml'
         continue-on-error: true
@@ -408,7 +408,7 @@ jobs:
           format: 'table'
           severity: 'CRITICAL,HIGH'
           exit-code: '1'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
           trivyignores: '.trivyignore'
           config: 'trivy.yaml'
 
diff --git a/.github/workflows/security-weekly-rebuild.yml b/.github/workflows/security-weekly-rebuild.yml
index 3c3101111..ff64e7f07 100644
--- a/.github/workflows/security-weekly-rebuild.yml
+++ b/.github/workflows/security-weekly-rebuild.yml
@@ -105,7 +105,7 @@ jobs:
           format: 'table'
           severity: 'CRITICAL,HIGH'
           exit-code: '1' # Fail workflow if vulnerabilities found
-          version: 'v0.71.0'
+          version: 'v0.71.1'
         continue-on-error: true
 
       - name: Run Trivy vulnerability scanner (SARIF)
@@ -116,7 +116,7 @@ jobs:
           format: 'sarif'
           output: 'trivy-weekly-results.sarif'
           severity: 'CRITICAL,HIGH,MEDIUM'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
 
       - name: Upload Trivy results to GitHub Security
         uses: github/codeql-action/upload-sarif@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2
@@ -131,7 +131,7 @@ jobs:
           format: 'json'
           output: 'trivy-weekly-results.json'
           severity: 'CRITICAL,HIGH,MEDIUM,LOW'
-          version: 'v0.71.0'
+          version: 'v0.71.1'
 
       - name: Upload Trivy JSON results
         uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7