chore(deps): bump actions/setup-go from 3.5.0 to 4.0.1

[dependabot]

Bumps actions/setup-go from 3.5.0 to 4.0.1.

Release notes

Sourced from actions/setup-go's releases.

v4.0.1

What's Changed

• Update documentation for v4 by @​dsame in actions/setup-go#354
• Fix glob bug in the package.json scripts section by @​IvanZosimov in actions/setup-go#359
• Bump xml2js dependency by @​dmitry-shibanov in actions/setup-go#370
• Bump @actions/cache dependency to v3.2.1 by @​nikolai-laevskii in actions/setup-go#374

New Contributors

• @​nikolai-laevskii made their first contribution in actions/setup-go#374

Full Changelog: actions/setup-go@v4...v4.0.1

v4.0.0

In scope of release we enable cache by default. The action won’t throw an error if the cache can’t be restored or saved. The action will throw a warning message but it won’t stop a build process. The cache can be disabled by specifying cache: false.

steps:
  - uses: actions/checkout@v3
  - uses: actions/setup-go@v4
    with:
      go-version: ‘1.19’
  - run: go run hello.go

Besides, we introduce such changes as

• Allow to use only GOCACHE for cache
• Bump json5 from 2.2.1 to 2.2.3
• Use proper version for primary key in cache
• Always add Go bin to the PATH
• Add step warning if go-version input is empty

Commits

• fac708d Bump @​actions/cache dependency to v3.2.1 (#374)
• dd84a95 Update xml2js (#370)
• 41c2024 Fix glob bug in package.json scripts section (#359)
• 8dbf352 update README fo v4 (#354)
• 4d34df0 Update configuration files (#348)
• fdc0d67 Add Go bin if go-version input is empty (#351)
• ebfdf6a add warning if go-version is empty (#350)
• b27d769 fix lockfileVersion (#349)
• c51a720 Enable caching by default with default input (#332)
• 6b848af Merge pull request #343 from akv-platform/reusable-workflow
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

Patch and project coverage have no change.

Comparison is base (7825821) 49.22% compared to head (0e383a7) 49.22%.

Additional details and impacted files

@@           Coverage Diff           @@
##           master   #13601   +/-   ##
=======================================
  Coverage   49.22%   49.22%           
=======================================
  Files         248      248           
  Lines       42830    42830           
=======================================
  Hits        21084    21084           
  Misses      19648    19648           
  Partials     2098     2098           

☔ View full report in Codecov by Sentry.
📢 Do you have feedback about the report comment? Let us know in this issue.

[crenshaw-dev]

@34fathombelow any concerns about this one? Wasn't sure if enabling cache would affect our SLSA compliance.

[34fathombelow]

@34fathombelow any concerns about this one? Wasn't sure if enabling cache would affect our SLSA compliance.

@crenshaw-dev no concerns here, this should not affect the build process or SLSA. I'm good with this upgrade.

[34fathombelow]

Lgtm