chore(deps): update softprops/action-gh-release action to v2.2.0

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
softprops/action-gh-release	action	minor	v2.1.0 -> v2.2.0

---

Release Notes

softprops/action-gh-release (softprops/action-gh-release)

v2.2.0

Compare Source

What's Changed

Exciting New Features 🎉

• feat: read the release assets asynchronously by @​xen0n in https://github.com/softprops/action-gh-release/pull/552

Bug fixes 🐛

• fix(docs): clarify the default for tag_name by @​alexeagle in https://github.com/softprops/action-gh-release/pull/544

Other Changes 🔄

• chore(deps): bump typescript from 5.6.3 to 5.7.2 by @​dependabot in https://github.com/softprops/action-gh-release/pull/548
• chore(deps): bump @​types/node from 22.9.0 to 22.9.4 by @​dependabot in https://github.com/softprops/action-gh-release/pull/547
• chore(deps): bump cross-spawn from 7.0.3 to 7.0.6 by @​dependabot in https://github.com/softprops/action-gh-release/pull/545
• chore(deps): bump @​vercel/ncc from 0.38.2 to 0.38.3 by @​dependabot in https://github.com/softprops/action-gh-release/pull/543
• chore(deps): bump prettier from 3.3.3 to 3.4.1 by @​dependabot in https://github.com/softprops/action-gh-release/pull/550
• chore(deps): bump @​types/node from 22.9.4 to 22.10.1 by @​dependabot in https://github.com/softprops/action-gh-release/pull/551
• chore(deps): bump prettier from 3.4.1 to 3.4.2 by @​dependabot in https://github.com/softprops/action-gh-release/pull/554

New Contributors

• @​alexeagle made their first contribution in https://github.com/softprops/action-gh-release/pull/544
• @​xen0n made their first contribution in https://github.com/softprops/action-gh-release/pull/552

Full Changelog: softprops/action-gh-release@v2.1.0...v2.2.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
actions/softprops/action-gh-release	7b4da11513bf3f43f9999e90eabced41ab8bb048	🟢 5.3	Details Check Score Reason Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Maintained 🟢 10 26 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 5 Found 3/6 approved changesets -- score normalized to 5 Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies 🟢 10 all dependencies are pinned CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected

Scanned Files

• .github/workflows/push-tag.yml

[sonarcloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud