chore(deps): bump the github-actions group across 1 directory with 3 updates

.github/workflows/docker.yml

@@ -30,7 +30,7 @@ jobs:
         uses: docker/setup-buildx-action@v3
       -
         name: Install Cosign
-        uses: sigstore/cosign-installer@v3.8.2
+        uses: sigstore/cosign-installer@v3.9.0
       -
         name: Login to GHCR
         uses: docker/login-action@v3

.github/workflows/go.yml

@@ -92,7 +92,7 @@ jobs:
           go-version-file: go.mod
       -
         name: Lint code
-        uses: golangci/golangci-lint-action@4696ba8babb6127d732c3c6dde519db15edab9ea  # v6.5.1
+        uses: golangci/golangci-lint-action@4afd733a84b1f43292c63897423277bb7f4313a9  # v8.0.0
         with:
           version: latest
           args: --timeout=10m

.github/workflows/releaser.yml

@@ -46,7 +46,7 @@ jobs:
           GITHUB_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
       -
         name: Install Cosign
-        uses: sigstore/cosign-installer@v3.8.2
+        uses: sigstore/cosign-installer@v3.9.0
       #-
       #  name: Import Code-Signing Certificates
       #  uses: Apple-Actions/import-codesign-certs@cfd6eb39a2c848ead8836bda6b56813585404ba7  # v5.0.0

.github/workflows/security.yml

@@ -46,7 +46,7 @@ jobs:
         uses: actions/checkout@v4
       -
         name: Run Trivy vulnerability scanner in repo mode
-        uses: aquasecurity/trivy-action@6c175e9c4083a92bbca2f9724c8a5e33bc2d97a5  # v0.30.0
+        uses: aquasecurity/trivy-action@76071ef0d7ec797419534a183b498b4d6366cf37  # v0.31.0
         with:
           scan-type: 'fs'
           ignore-unfixed: true