chore(deps): bump the dependencies group with 2 updates (#655)

chore(deps): bump the dependencies group with 4 updates (#644)

* chore(deps): bump the dependencies group with 4 updates

Bumps the dependencies group with 4 updates: [github/contributors](https://github.com/github/contributors), [actions/setup-python](https://github.com/actions/setup-python), [super-linter/super-linter](https://github.com/super-linter/super-linter) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `github/contributors` from 1.7.6 to 1.7.7
- [Release notes](https://github.com/github/contributors/releases)
- [Commits](github/contributors@abf3681...e345de7)

Updates `actions/setup-python` from 6.0.0 to 6.1.0
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](actions/setup-python@v6.0.0...v6.1.0)

Updates `super-linter/super-linter` from 8.2.1 to 8.3.0
- [Release notes](https://github.com/super-linter/super-linter/releases)
- [Changelog](https://github.com/super-linter/super-linter/blob/main/CHANGELOG.md)
- [Commits](super-linter/super-linter@2bdd90e...502f4fe)

Updates `github/codeql-action` from 4.31.5 to 4.31.6
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@fdbfb4d...fe4161a)

---
updated-dependencies:
- dependency-name: github/contributors
  dependency-version: 1.7.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: actions/setup-python
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: super-linter/super-linter
  dependency-version: 8.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: github/codeql-action
  dependency-version: 4.31.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>

* fix: linting

- add dependabot cooldown feature (7 days). [docs](https://docs.github.com/en/code-security/dependabot/working-with-dependabot/dependabot-options-reference#cooldown-)

Signed-off-by: jmeridth <jmeridth@gmail.com>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: jmeridth <jmeridth@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: jmeridth <jmeridth@gmail.com>

chore(deps): bump actions/checkout from 5.0.0 to 6.0.0 (#639)

chore(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 (#626)

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.6.2 to 5.0.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@v4.6.2...v5.0.0)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: 5.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

chore(deps): bump python in the dependencies group (#621)

Bumps the dependencies group with 1 update: python.


Updates `python` from 3.13-slim to 3.14-slim

---
updated-dependencies:
- dependency-name: python
  dependency-version: 3.14-slim
  dependency-type: direct:production
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Merge pull request #612 from github/copilot/add-env-var-for-report

Merge pull request #604 from github/copilot/fix-e7ef649d-faf0-448e-a1…

…9b-ca4222c3a3b4

feat: Add PR comment statistics behind HIDE_PR_STATISTICS configuration flag

fix: go back to using root user in Dockerfile (#600)

We have to do this because we have no active way to change
permissions to $GITHUB_OUTPUT to a specific user when
running the container

Add trivy ignore to top of Dockerfile to pass linting

Signed-off-by: jmeridth <jmeridth@gmail.com>

chore(deps): bump the dependencies group with 4 updates (#582)

* chore(deps): bump the dependencies group with 4 updates

Bumps the dependencies group with 4 updates: [github/ospo-reusable-workflows](https://github.com/github/ospo-reusable-workflows), [github/contributors](https://github.com/github/contributors), [super-linter/super-linter](https://github.com/super-linter/super-linter) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `github/ospo-reusable-workflows` from 0.5.2 to 0.5.3
- [Release notes](https://github.com/github/ospo-reusable-workflows/releases)
- [Changelog](https://github.com/github/ospo-reusable-workflows/blob/main/docs/release-image.md)
- [Commits](github/ospo-reusable-workflows@ebb4e21...c9afb9b)

Updates `github/contributors` from 1.5.11 to 1.7.0
- [Release notes](https://github.com/github/contributors/releases)
- [Commits](github/contributors@69e531b...ae62be2)

Updates `super-linter/super-linter` from 8.0.0 to 8.1.0
- [Release notes](https://github.com/super-linter/super-linter/releases)
- [Changelog](https://github.com/super-linter/super-linter/blob/main/CHANGELOG.md)
- [Commits](super-linter/super-linter@5119dcd...ffde3b2)

Updates `github/codeql-action` from 3.29.10 to 3.29.11
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@96f518a...3c3833e)

---
updated-dependencies:
- dependency-name: github/ospo-reusable-workflows
  dependency-version: 0.5.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: github/contributors
  dependency-version: 1.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: super-linter/super-linter
  dependency-version: 8.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: github/codeql-action
  dependency-version: 3.29.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>

* fix: linting

- ensure credentials are not persisted past checkout of code
- add zizmor.yml file to linters to allow pull_request_target in actions for auto-labeler to work on fork pull requests
- add trivy.yml file to linters to ignore mypy_cache directory
- add HEALTHCHECK and non-root user to Dockerfile

Signed-off-by: jmeridth <jmeridth@gmail.com>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: jmeridth <jmeridth@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: jmeridth <jmeridth@gmail.com>

fix: time_in_draft calculation for pull requests initially created as…

… drafts (#587)

* Initial plan

* Fix time_in_draft calculation for PRs initially created as drafts

Co-authored-by: zkoppert <6935431+zkoppert@users.noreply.github.com>

* perf: reduce duplicate loops

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Signed-off-by: Zack Koppert <zkoppert@github.com>

---------

Signed-off-by: Zack Koppert <zkoppert@github.com>
Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: zkoppert <6935431+zkoppert@users.noreply.github.com>
Co-authored-by: Zack Koppert <zkoppert@github.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>