build(deps): Bump the ci-dependencies group across 1 directory with 3…

… updates

Bumps the ci-dependencies group with 3 updates in the / directory: [actions/checkout](https://github.com/actions/checkout), [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) and [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request).


Updates `actions/checkout` from 4.1.7 to 4.2.0
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@v4.1.7...v4.2.0)

Updates `pypa/gh-action-pypi-publish` from 1.9.0 to 1.10.2
- [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases)
- [Commits](pypa/gh-action-pypi-publish@v1.9.0...v1.10.2)

Updates `peter-evans/create-pull-request` from 6.1.0 to 7.0.5
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](peter-evans/create-pull-request@v6.1.0...v7.0.5)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ci-dependencies
- dependency-name: pypa/gh-action-pypi-publish
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ci-dependencies
- dependency-name: peter-evans/create-pull-request
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: ci-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>

.github/workflows/ci.yml

@@ -29,7 +29,7 @@ jobs:
     runs-on: "${{ matrix.os }}"
 
     steps:
-      - uses: "actions/checkout@v4.1.7"
+      - uses: "actions/checkout@v4.2.0"
 
       - id: "python_and_poetry"
         uses: "./.github/actions/install_python_and_poetry"
@@ -59,7 +59,7 @@ jobs:
     runs-on: "ubuntu-latest"
 
     steps:
-      - uses: "actions/checkout@v4.1.7"
+      - uses: "actions/checkout@v4.2.0"
 
       - id: "python_and_poetry"
         uses: "./.github/actions/install_python_and_poetry"

.github/workflows/ci_package.yml

@@ -16,7 +16,7 @@ jobs:
     runs-on: "ubuntu-latest"
 
     steps:
-      - uses: "actions/checkout@v4.1.7"
+      - uses: "actions/checkout@v4.2.0"
 
       - id: "python_and_poetry"
         uses: "./.github/actions/install_python_and_poetry"
@@ -34,4 +34,4 @@ jobs:
 
       - name: "Publish package"
         if: "${{ startsWith(github.ref, 'refs/tags/') }}"
-        uses: "pypa/gh-action-pypi-publish@v1.9.0"
+        uses: "pypa/gh-action-pypi-publish@v1.10.2"

.github/workflows/ci_release.yml

@@ -14,7 +14,7 @@ jobs:
     runs-on: "ubuntu-latest"
 
     steps:
-      - uses: "actions/checkout@v4.1.7"
+      - uses: "actions/checkout@v4.2.0"
 
       - name: "Fetch git data"
         run: |

.github/workflows/ci_verify_docs_build.yml

@@ -14,7 +14,7 @@ jobs:
     runs-on: "ubuntu-latest"
 
     steps:
-      - uses: "actions/checkout@v4.1.7"
+      - uses: "actions/checkout@v4.2.0"
 
       - id: "python_and_poetry"
         uses: "./.github/actions/install_python_and_poetry"

.github/workflows/release_pr.yml

@@ -23,7 +23,7 @@ jobs:
     runs-on: "ubuntu-latest"
 
     steps:
-      - uses: "actions/checkout@v4.1.7"
+      - uses: "actions/checkout@v4.2.0"
         with:
           ref: "main"
 
@@ -47,7 +47,7 @@ jobs:
           private_key: "${{ secrets.BADABUMP_APP_PRIVATE_KEY }}"
 
       - name: "Create pull request with changed files"
-        uses: "peter-evans/create-pull-request@v6.1.0"
+        uses: "peter-evans/create-pull-request@v7.0.5"
         with:
           token: "${{ steps.token.outputs.token }}"
           commit-message: |

.github/workflows/release_tag.yml

@@ -25,7 +25,7 @@ jobs:
           app_id: "${{ secrets.BADABUMP_APP_ID }}"
           private_key: "${{ secrets.BADABUMP_APP_PRIVATE_KEY }}"
 
-      - uses: "actions/checkout@v4.1.7"
+      - uses: "actions/checkout@v4.2.0"
         with:
           ref: "main"
           token: "${{ steps.token.outputs.token }}"