Bump guardian/actions-riff-raff from 2 to 3

[dependabot]

Bumps guardian/actions-riff-raff from 2 to 3.

Release notes

Sourced from guardian/actions-riff-raff's releases.

v3.0.0

3.0.0 (2023-11-20)

• Add a pull request comment with quick links to deploy with Riff-Raff (#85)

BREAKING CHANGES

A new required input githubToken has been added. This needs to be scoped with pull-requests: write permission.

Before (v2)

jobs:
  CI:
    timeout-minutes: 15
    runs-on: ubuntu-latest
    steps:
      - uses: guardian/actions-riff-raff@v2
        with:
          projectName: playground::my-application
          configPath: riff-raff.yaml
          contentDirectories: |
            static-site-assets:
              - static-site/dist
            api:
              - target/application.jar

After (v3)

jobs:
  CI:
    timeout-minutes: 15
    runs-on: ubuntu-latest
    permissions: 
      pull-requests: write # <- NEW!
    steps:
      - uses: guardian/actions-riff-raff@v3 # Note the version change
        with:
          githubToken: ${{ secrets.GITHUB_TOKEN }} # <- NEW!
          projectName: playground::my-application
          configPath: riff-raff.yaml
          contentDirectories: |
            static-site-assets:
              - static-site/dist
            api:
              - target/application.jar

Note that GITHUB_TOKEN is provided by GitHub. See https://docs.github.com/en/actions/security-guides/automatic-token-authentication.

v2.2.4

What's Changed

... (truncated)

Commits

• 3390967 Merge pull request #88 from guardian/aa/support-mono-repo
• fb4579c fix: Wrap project name in backticks for better formatting
• 71d1bfc feat: Support repositories with multiple Riff-Raff projects
• f5c7b37 Merge pull request #87 from guardian/aa/link-to-recommendations
• 47cbe02 Provide more context to GitHub topic failure
• 15286f8 Block deploys of repos without appropriate topics (#86)
• bbfa351 Merge pull request #85 from guardian/aa/pr-comment
• 65d6c91 fix: githubToken is required
• adbca41 fix: Fail fast if githubToken not supplied
• 34464fc docs: Use v3 in README
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once CI passes on it, as requested by @akash1810.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Deploy build 134 of security::snyk-tag-monitor to INFRA

All deployment options

• Deploy build 134 of security::snyk-tag-monitor to INFRA
• Deploy parts of build 134 to INFRA by previewing it first

---

From guardian/actions-riff-raff.

[akash1810]

@dependabot merge