chore(deps): update github-actions

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
github/codeql-action	action	patch	v4.35.2 → v4.35.4
taiki-e/install-action (changelog)	action	digest	ff869c2 → a2f3d48

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

github/codeql-action (github/codeql-action)

v4.35.4

Compare Source

• Update default CodeQL bundle version to 2.25.4. #​3881

v4.35.3

Compare Source

• Upcoming breaking change: Add a deprecation warning for customers using CodeQL version 2.19.3 and earlier. These versions of CodeQL were discontinued on 9 April 2026 alongside GitHub Enterprise Server 3.15, and will be unsupported by the next minor release of the CodeQL Action. #​3837
• Configurations for private registries that use Cloudsmith or GCP OIDC are now accepted. #​3850
• Best-effort connection tests for private registries now use GET requests instead of HEAD for better compatibility with various registry implementations. For NuGet feeds, the test is now always performed against the service index. #​3853
• Fixed a bug where two diagnostics produced within the same millisecond could overwrite each other on disk, causing one of them to be lost. #​3852
• Update default CodeQL bundle version to 2.25.3. #​3865

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • Between 12:00 AM and 03:59 AM, only on Monday (* 0-3 * * 1)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

Omen Analysis

Diff Risk

Risk Score	23%
Risk Level	LOW
Files Modified	2
Lines Added	+2
Lines Deleted	-2
Commits	2

Risk Factors

Factor	Score
file_churn	0.1
entropy	0.0466
commits	0.0140
num_files	0.0106
ownership_diffusion	0.0083
lines_added	0.0008
lines_deleted	0.0008
file_complexity	0

Recommendations

• Touches historically volatile files - changes here often introduce bugs

Repository Health

Health Score	77.72797685453021 / 100
Grade	C
Files Analyzed	101
Critical Issues	1

Score Components

Component	Score	Weight
complexity	92	1
duplication	42	0.8
cohesion	94.2	0.6
tdg	85.3	0.6
coupling	53.1	0.4
satd	91.1	0.4
smells	100	0.2

Tips for AI agents

Use these commands to investigate and improve low-scoring areas.

Run full analysis:

omen -f json score    # health score with component breakdown
omen -f json diff     # PR risk analysis
omen hotspot          # high-churn + high-complexity files

Coupling (score: 53.110891089108904) -- needs attention

omen graph && omen smells

Break cyclic dependencies by introducing interfaces or extracting shared types. Reduce fan-out from hub modules by splitting responsibilities.

---

Duplication (score: 41.96439923712651) -- needs attention

omen clones

Look for Type-1 (exact) and Type-2 (renamed) clones. Extract shared logic into reusable functions or modules. Prioritize clones in high-churn files.

---

General workflow for improving scores:

1. Run the relevant analyzer command to identify specific files
2. Focus on the highest-weight components first (complexity 25%, duplication 20%, cohesion 15%, TDG 15%)
3. Make targeted improvements -- small refactors that reduce complexity or eliminate duplication
4. Re-run omen score to verify improvement