Bump docker/setup-qemu-action from 3 to 4

[dependabot]

Bumps docker/setup-qemu-action from 3 to 4.

Release notes

Sourced from docker/setup-qemu-action's releases.

v4.0.0

• Node 24 as default runtime (requires Actions Runner v2.327.1 or later) by @​crazy-max in docker/setup-qemu-action#245
• Switch to ESM and update config/test wiring by @​crazy-max in docker/setup-qemu-action#241
• Bump @​actions/core from 1.11.1 to 3.0.0 in docker/setup-qemu-action#244
• Bump @​docker/actions-toolkit from 0.67.0 to 0.77.0 in docker/setup-qemu-action#243
• Bump @​isaacs/brace-expansion from 5.0.0 to 5.0.1 in docker/setup-qemu-action#240
• Bump js-yaml from 3.14.1 to 3.14.2 in docker/setup-qemu-action#231
• Bump lodash from 4.17.21 to 4.17.23 in docker/setup-qemu-action#238

Full Changelog: docker/setup-qemu-action@v3.7.0...v4.0.0

v3.7.0

• Bump @​docker/actions-toolkit from 0.56.0 to 0.67.0 in docker/setup-qemu-action#217 docker/setup-qemu-action#230
• Bump brace-expansion from 1.1.11 to 1.1.12 in docker/setup-qemu-action#220
• Bump form-data from 2.5.1 to 2.5.5 in docker/setup-qemu-action#218
• Bump tmp from 0.2.3 to 0.2.4 in docker/setup-qemu-action#221
• Bump undici from 5.28.4 to 5.29.0 in docker/setup-qemu-action#219

Full Changelog: docker/setup-qemu-action@v3.6.0...v3.7.0

v3.6.0

• Display binfmt version by @​crazy-max in docker/setup-qemu-action#202

Full Changelog: docker/setup-qemu-action@v3.5.0...v3.6.0

v3.5.0

• Bump @​docker/actions-toolkit from 0.54.0 to 0.56.0 in docker/setup-qemu-action#205

Full Changelog: docker/setup-qemu-action@v3.4.0...v3.5.0

v3.4.0

• Bump @​docker/actions-toolkit from 0.49.0 to 0.54.0 in docker/setup-qemu-action#193 docker/setup-qemu-action#197

Full Changelog: docker/setup-qemu-action@v3.3.0...v3.4.0

v3.3.0

• Add cache-image input to enable/disable caching of binfmt image by @​crazy-max in docker/setup-qemu-action#130
• Bump @​actions/core from 1.10.1 to 1.11.1 in docker/setup-qemu-action#172
• Bump @​docker/actions-toolkit from 0.35.0 to 0.49.0 in docker/setup-qemu-action#187
• Bump cross-spawn from 7.0.3 to 7.0.6 in docker/setup-qemu-action#182
• Bump path-to-regexp from 6.2.2 to 6.3.0 in docker/setup-qemu-action#162

Full Changelog: docker/setup-qemu-action@v3.2.0...v3.3.0

v3.2.0

• Bump @​docker/actions-toolkit from 0.31.0 to 0.35.0 in docker/setup-qemu-action#154 docker/setup-qemu-action#155

Full Changelog: docker/setup-qemu-action@v3.1.0...v3.2.0

v3.1.0

... (truncated)

Commits

• ce36039 Merge pull request #245 from crazy-max/node24
• 6386344 node 24 as default runtime
• 1ea3db7 Merge pull request #243 from docker/dependabot/npm_and_yarn/docker/actions-to...
• b56a002 chore: update generated content
• c43f02d build(deps): bump @​docker/actions-toolkit from 0.67.0 to 0.77.0
• ce10c58 Merge pull request #244 from docker/dependabot/npm_and_yarn/actions/core-3.0.0
• 429fc9d chore: update generated content
• 060e5f8 build(deps): bump @​actions/core from 1.11.1 to 3.0.0
• 44be13e Merge pull request #231 from docker/dependabot/npm_and_yarn/js-yaml-3.14.2
• 1897438 chore: update generated content
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

---

Resolves #245
Resolves #243
Resolves #244
Resolves #231
Resolves docker/setup-qemu-action#245
Resolves docker/setup-qemu-action#241
Resolves docker/setup-qemu-action#244
Resolves docker/setup-qemu-action#243
Resolves docker/setup-qemu-action#240
Resolves docker/setup-qemu-action#231
Resolves docker/setup-qemu-action#238
Resolves docker/setup-qemu-action#217
Resolves docker/setup-qemu-action#230
Resolves docker/setup-qemu-action#220
Resolves docker/setup-qemu-action#218
Resolves docker/setup-qemu-action#221
Resolves docker/setup-qemu-action#219
Resolves docker/setup-qemu-action#202
Resolves docker/setup-qemu-action#205
Resolves docker/setup-qemu-action#193
Resolves docker/setup-qemu-action#197
Resolves docker/setup-qemu-action#130
Resolves docker/setup-qemu-action#172
Resolves docker/setup-qemu-action#187
Resolves docker/setup-qemu-action#182
Resolves docker/setup-qemu-action#162
Resolves docker/setup-qemu-action#154
Resolves docker/setup-qemu-action#155

[github-actions]

🤖 Claude Code Review

PR Code Review

This is a minimal dependency bump PR. Here's the analysis:

Code Quality

• ✅ Style guide — Single-line change, no style concerns.
• ✅ No commented-out code — N/A.
• ✅ Meaningful variable names — N/A.
• ✅ DRY principle — N/A.
• ✅ Defects — No bugs or logic errors. This is a straightforward version bump of docker/setup-qemu-action from v3 to v4 in action.yaml:68.

Testing

• ✅ Unit/integration tests — No new logic introduced; a version bump of a GitHub Action does not require new tests.
• ✅ Edge cases — N/A for a dependency bump.

Documentation

• ✅ README — No functional changes; README update not required.
• ✅ API docs — N/A.
• ✅ Inline comments — N/A.
• ⚠️ CHANGELOG.md — No CHANGELOG entry for this bump. Acceptable for automated Dependabot PRs depending on project convention, but worth checking if the project maintains a changelog for dependency updates.

Security

• ✅ No hardcoded credentials — N/A.
• ✅ Input validation — N/A.
• ✅ Error handling — N/A.
• ✅ No sensitive data — N/A.
• ✅ No license files — N/A.

---

Summary

Approve. This is a clean, single-line Dependabot bump. The only minor note is the missing CHANGELOG entry — verify whether your project convention requires logging dependency updates.

Automated code review analyzing defects and coding standards

[github-actions]

Super-linter summary

Language	Validation result
CHECKOV	Pass ✅
GITHUB_ACTIONS_ZIZMOR	Pass ✅
GITLEAKS	Pass ✅
GIT_MERGE_CONFLICT_MARKERS	Pass ✅
JSCPD	Pass ✅
PRE_COMMIT	Pass ✅
SPELL_CODESPELL	Pass ✅
TRIVY	Pass ✅
YAML	Pass ✅
YAML_PRETTIER	Pass ✅

All files and directories linted successfully

For more information, see the GitHub Actions workflow run

Powered by Super-linter

[github-actions]

🤖 Claude Code Review

PR Code Review

PR Summary: Bumps docker/setup-qemu-action from v3 to v4 in action.yaml.

---

Code Quality

• ✅ Style guide: The change is a single-line version bump in a YAML file — consistent with existing formatting conventions.
• ✅ No commented-out code: None present in the diff.
• ✅ Meaningful variable names: N/A for this change.
• ✅ DRY principle: N/A for this change.
• ✅ Defects: No bugs or logic errors. The bump is straightforward. Note: docker/setup-buildx-action remains at v3 (action.yaml:71) while docker/login-action is already at v4 (action.yaml:75) — this is a minor inconsistency worth being aware of, but not a defect.
• ✅ CLAUDE.md: The project memory config (build-resources/.claude/CLAUDE.md) is appropriately general and contains no local-environment-specific content.

---

Testing

• ✅ No new functions or logic introduced; testing not applicable for a dependency version bump.

---

Documentation

• ✅ README: No changes needed.
• ✅ API docs: N/A.
• ✅ Inline comments: N/A.
• ❌ CHANGELOG.md not updated (CHANGELOG.md): The last entry is [1.1.0] - 2023-12-06. This dependency bump should be documented as a new entry per the project's keepachangelog standard.

---

Security

• ✅ No hardcoded credentials.
• ✅ Input validation: Existing validation logic unchanged.
• ✅ Error handling: Unchanged.
• ✅ No sensitive data in logs.
• ✅ No .lic files or AQAAAD strings.

---

Summary

Category	Status
Code Quality	✅
Testing	✅
Documentation	❌ CHANGELOG not updated
Security	✅

One required change: Add an entry to CHANGELOG.md documenting the docker/setup-qemu-action bump from v3 to v4.

Automated code review analyzing defects and coding standards

[github-actions]

Super-linter summary

Language	Validation result
CHECKOV	Pass ✅
GITHUB_ACTIONS_ZIZMOR	Pass ✅
GITLEAKS	Pass ✅
GIT_MERGE_CONFLICT_MARKERS	Pass ✅
JSCPD	Pass ✅
PRE_COMMIT	Pass ✅
SPELL_CODESPELL	Pass ✅
TRIVY	Pass ✅
YAML	Pass ✅
YAML_PRETTIER	Pass ✅

All files and directories linted successfully

For more information, see the GitHub Actions workflow run

Powered by Super-linter