Bump gradle/actions from 4.4.0 to 4.4.1 in the gha group

[dependabot]

Bumps the gha group with 1 update: gradle/actions.

Updates gradle/actions from 4.4.0 to 4.4.1

Release notes

Sourced from gradle/actions's releases.

v4.4.1

This patch release fixes a bug in Develocity Injection with a custom plugin repository. The gradle-plugin-repository-* action parameters were not being correctly mapped to environment variables that are read by the Develocity Injection init script.

This issue has been fixed by setting the correct environment variables:

• gradle-plugin-repository-url is mapped to DEVELOCITY_INJECTION_PLUGIN_REPOSITORY_URL
• gradle-plugin-repository-username is mapped to DEVELOCITY_INJECTION_PLUGIN_REPOSITORY_USERNAME
• gradle-plugin-repository-password is mapped to DEVELOCITY_INJECTION_PLUGIN_REPOSITORY_PASSWORD

Additionally, these parameters can now be used to configure a custom plugin repository for the GitHub Dependency Graph Gradle Plugin, required for dependency submission.

What's Changed

• Dependency updates by @​bigdaz in gradle/actions#667
• Fix plugin repository env vars by @​bigdaz in gradle/actions#669

Full Changelog: gradle/actions@v4.4.0...v4.4.1

Commits

• ac638b0 [bot] Update dist directory
• fd88882 Fix setting env vars for plugin repository (#669)
• 3af3dd3 [bot] Update dist directory
• bf78bf9 Dependency updates (#667)
• ca92106 Use Java 17 for toolchain build
• f7d1903 Update known wrapper checksums
• eb0816b Fix update-wrapper-checksums workflow
• d408d62 Bump the npm-dependencies group across 1 directory with 5 updates
• 306df22 Bump the github-actions group across 1 directory with 3 updates
• 05baf32 Bump org.gradle.toolchains.foojay-resolver-convention
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[psiinon]

Checkmarx One – Scan Summary & Details – 401b93cb-5ede-45e2-9fee-87a075a9a562

New Issues (5)

Checkmarx found the following issues in this Pull Request

Severity	Issue	Source File / Package	Checkmarx Insight
	Last User Is 'root'	/docker-wrapper: 10	details Leaving the last user as root can cause security risks. Change to another user after running the commands the need privileges ID: 48tNdC6UziXyOGUccQZn3tPPzi4%3D
	MAINTAINER Instruction Being Used	/docker-wrapper: 3	details The MAINTAINER instruction sets the Author field of the generated images. The LABEL instruction is a much more flexible version of this and you sh... ID: nlHBIHIr9RZHoVXOgGxJ9hQCHFA%3D
	Unpinned Actions Full Length Commit SHA	/codeql.yml: 31	details Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA help... ID: z89ONTXYaYdPcNUEzfFqPVDqGfU%3D
	Unpinned Actions Full Length Commit SHA	/codeql.yml: 34	details Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA help... ID: wmF9HbZcEd4Px83a0Vg%2BO%2F%2B%2B4BU%3D
	Unpinned Actions Full Length Commit SHA	/codeql.yml: 35	details Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA help... ID: ivv4LqDvobLaIQBf4po7RJO0z9E%3D

Fixed Issues (6)

Great job! The following issues were fixed in this Pull Request

Severity	Issue	Source File / Package
	CVE-2024-47081	Python-requests-2.32.3
	CVE-2025-50181	Python-urllib3-2.4.0
	CVE-2025-50182	Python-urllib3-2.4.0
	Filtering_Sensitive_Logs	/other/api/sdlc-integration/core/scan_module/scan.py: 219
	Filtering_Sensitive_Logs	/other/api/sdlc-integration/core/scan_module/scan.py: 243
	Filtering_Sensitive_Logs	/other/api/sdlc-integration/core/scan_module/scan.py: 218