Bump the pre-commit-hooks group with 3 updates

[dependabot]

Bumps the pre-commit-hooks group with 3 updates: https://github.com/rhysd/actionlint, https://github.com/ansible/ansible-lint and https://github.com/adrienverge/yamllint.

Updates https://github.com/rhysd/actionlint from v1.7.7 to 1.7.11

Release notes

Sourced from https://github.com/rhysd/actionlint's releases.

v1.7.11

• Support the case() function in ${{ }} expressions which was recently added to GitHub Actions. (#612, #614, thanks @​heppu)

  env:
    # ERROR: case() requires an odd number of arguments
    ENVIRONMENT: |-
      ${{ case(
        github.ref == 'refs/heads/main', 'production',
        github.ref == 'refs/heads/staging', 'staging'
      ) }}

• Support new macos-26-large and windows-2025-vs2026 runner labels. See the GitHub's announce for more details. (#615, thanks @​hugovk and @​muzimuzhi)
• Enable Artifact attestations for the released binaries. From v1.7.11 gh command can verify the integrity of the downloaded binaries as follows. The verification is highly recommended in terms of supply chain security. (#608, thanks @​takaram)

  $ gh release download --repo rhysd/actionlint --pattern '*_darwin_amd64.tar.gz' v1.7.11
  $ gh attestation verify --repo rhysd/actionlint actionlint_1.7.11_darwin_amd64.tar.gz
  Loaded digest sha256:17ffc17fed8f0258ef6ad4aed932d3272464c7ef7d64e1cb0d65aa97c9752107 for file://actionlint_1.7.11_darwin_amd64.tar.gz
  Loaded 1 attestation from GitHub API
  The following policy criteria will be enforced:
  
  Predicate type must match:................ https://slsa.dev/provenance/v1
  Source Repository Owner URI must match:... https://github.com/rhysd
  Source Repository URI must match:......... https://github.com/rhysd/actionlint
  Subject Alternative Name must match regex: (?i)^https://github.com/rhysd/actionlint/
  OIDC Issuer must match:................... https://token.actions.githubusercontent.com
  
  ✓ Verification succeeded!
  The following 1 attestation matched the policy criteria
  
  Attestation #1
  
  Build repo:..... rhysd/actionlint
  Build workflow:. .github/workflows/release.yaml@refs/tags/v1.7.11
  Signer repo:.... rhysd/actionlint
  Signer workflow: .github/workflows/release.yaml@refs/tags/v1.7.11

Report path filters with ./ as error because they never match anything. (#521)

on:
  push:
    paths:
      # ERROR: This never matches anything. `foo/bar.txt` is correct.
      - ./foo/bar.txt

Fix comparing matrix items when an item is a super set of another item. (#523, #613, thanks @​michaelgruenewald)

Fix stack overflow crash by a recursive anchor in matrix items. (#610)

Fix an unassigned variable false positive from shellcheck by disabling SC2153 rule. (#573)

Reduce the number of memory allocations on resolving anchors.

Update the popular actions data set to the latest.

Update Go dependencies to the latest.

... (truncated)

Changelog

Sourced from https://github.com/rhysd/actionlint's changelog.

v1.7.11 - 2026-02-14

• Support the case() function in ${{ }} expressions which was recently added to GitHub Actions. (#612, #614, thanks @​heppu)

  env:
    # ERROR: case() requires an odd number of arguments
    ENVIRONMENT: |-
      ${{ case(
        github.ref == 'refs/heads/main', 'production',
        github.ref == 'refs/heads/staging', 'staging'
      ) }}

• Support new macos-26-large and windows-2025-vs2026 runner labels. See the GitHub's announce for more details. (#615, thanks @​hugovk and @​muzimuzhi)
• Enable Artifact attestations for the released binaries. From v1.7.11 gh command can verify the integrity of the downloaded binaries as follows. The verification is highly recommended in terms of supply chain security. (#608, thanks @​takaram)

  $ gh release download --repo rhysd/actionlint --pattern '*_darwin_amd64.tar.gz' v1.7.11
  $ gh attestation verify --repo rhysd/actionlint actionlint_1.7.11_darwin_amd64.tar.gz
  Loaded digest sha256:17ffc17fed8f0258ef6ad4aed932d3272464c7ef7d64e1cb0d65aa97c9752107 for file://actionlint_1.7.11_darwin_amd64.tar.gz
  Loaded 1 attestation from GitHub API
  The following policy criteria will be enforced:
  
  Predicate type must match:................ https://slsa.dev/provenance/v1
  Source Repository Owner URI must match:... https://github.com/rhysd
  Source Repository URI must match:......... https://github.com/rhysd/actionlint
  Subject Alternative Name must match regex: (?i)^https://github.com/rhysd/actionlint/
  OIDC Issuer must match:................... https://token.actions.githubusercontent.com
  
  ✓ Verification succeeded!
  The following 1 attestation matched the policy criteria
  
  Attestation #1
  
  Build repo:..... rhysd/actionlint
  Build workflow:. .github/workflows/release.yaml@refs/tags/v1.7.11
  Signer repo:.... rhysd/actionlint
  Signer workflow: .github/workflows/release.yaml@refs/tags/v1.7.11

Report path filters with ./ because they never match anything. (#521)

on:
  push:
    paths:
      # ERROR: This never matches anything. `foo/bar.txt` is correct.
      - ./foo/bar.txt

Fix comparing matrix items when an item is a super set of another item. (#523, #613, thanks @​michaelgruenewald)

Fix stack overflow crash by a recursive anchor in matrix items. (#610)

Fix a unassigned variable false positive from shellcheck by disabling SC2153 rule. (#573)

Reduce the number of memory allocations on resolving anchors.

Update the popular actions data set to the latest.

... (truncated)

Commits

• 393031a bump up version to v1.7.11
• 63589e8 add link to the release note of the version in playground heading
• 58a2626 remove legacy Homebrew formula
• d22c104 fix test script for download script to check error case failures
• 50d2134 describe how to download and verify artifact using gh (fix #617)
• 226bb4a update playground npm deps including jsdom v28
• 1e85edb disable SC2153 shellcheck rule to avoid unassigned variable false positive (f...
• 8776d64 Merge pull request #619 from takaram/patch-1
• e3eb8cb reduce memory allocations on resolving anchors
• db08cec Fix variable name in release workflow
• Additional commits viewable in compare view

Updates https://github.com/ansible/ansible-lint from v25.5.0 to 26.1.1

Release notes

Sourced from https://github.com/ansible/ansible-lint's releases.

v26.1.1

Features

• feat: added exit code 8 for successfully fixed violations (#4674) (#4899) @​Jkhall81

Fixes

• fix: resolve auto-fix failures and detection for short module names (… (#4897) @​Jkhall81
• fix: ensure --no-offline overrides config file precedence (#4845) (#4903) @​Jkhall81
• fix: pre-commit cache missing cspell updates (#4909) @​alisonlhart
• Set cryptography ceiling to match downstream requirement. (#4904) @​cidrblock
• fix: almalinux missing reference in platforms array (#4896) @​thelinuxracoon

Maintenance

• chore: Add renovate constraint for cryptography (#4911) @​alisonlhart

v26.1.0

Fixes

• fix: implement precise filtering for bracketed sub-tags (#4892) @​Jkhall81
• fix: avoid unnecessary creation of .ansible folders (#4894) @​ssbarnea
• fix: refactor RulesCollection to always require app argument (#4891) @​ssbarnea
• fix: anchor kind discovery to project root (#4763) (#4889) @​Jkhall81
• fix: avoid creating cache directory when listing version (#4865) @​ssbarnea
• fix: ensure exclude_paths are honored for unparseable files (#4886) @​Jkhall81
• fix: avoid use of pathspec 1.0.0 until yamllint is updated (#4887) @​ssbarnea
• fix: allow valid tabs in lineinfile nested in blocks (#4719) (#4881) @​Jkhall81
• fix: update documentation to clarify requirement to run from project … (#4885) @​Jkhall81
• fix: replace hardcoded /tmp path with secure temp directory (CWE… (#4878) @​Jkhall81
• fix: handle missing keys in _parse_failed_msg to prevent KeyError (#4879) @​Jkhall81
• fix: add argument_specs to meta schema (#4762) (#4880) @​Jkhall81
• fix: retire -p/--parseable option (#4884) @​ssbarnea
• fix: correct partial-become rule documentation comments (#4876) @​emmanuel-ferdman

Maintenance

• chore: add almalinux platform to meta schemas (#4893) @​thelinuxracoon
• chore: refactor testing code to reduce use of get_app() (#4890) @​ssbarnea
• chore(deps): update all dependencies (#4877) @renovate[bot]

v25.12.2

Fixes

• Update configuring.md to reflect correct precommit name (#4872) @​AgustinRamiroDiaz
• fix: prevent trailing space on blank comment lines (#4868) @​emmanuel-ferdman

Maintenance

• chore(deps): update dependencies [security] - abandoned (#4874) @renovate[bot]

... (truncated)

Commits

• 7f6abc5 fix: resolve auto-fix failures and detection for short module names (… (#4897)
• 156aef8 chore(deps): update all dependencies (#4900)
• 08e3173 chore(deps): update dependencies [security] (#4922)
• 4c56d63 chore(deps): update dependencies [security] (#4921)
• acec2b2 chore(deps): update dependencies [security] (#4920)
• 189f75d chore(deps): update dependencies [security] (#4919)
• 60ac6cc chore(deps): update dependencies [security] (#4918)
• 7c87bda chore(deps): update dependencies [security] (#4917)
• 18a45e8 chore(deps): update dependencies [security] (#4916)
• 3a53327 chore(deps): update dependencies [security] (#4915)
• Additional commits viewable in compare view

Updates https://github.com/adrienverge/yamllint from v1.37.1 to 1.38.0

Changelog

Sourced from https://github.com/adrienverge/yamllint's changelog.

1.38.0 (2026-01-13)

• Add support for Python 3.14, drop support for Python 3.9
• Require pathspec ≥ 1.0.0
• Config: Follow gitignore implementation in yaml-files and ignore
• Config: Use "mapping" instead of "dict" for user-facing errors
• Rule indentation: Fix error message for check-multi-line-strings
• Rule quoted-strings: Add quote-type: consistent
• Docs: Update the name of BSD ports
• Docs: Enhance wording of recursive directory lint in README
• Docs: Add Alpine Linux installation instructions in README

Commits

• cba56bc yamllint version 1.38.0
• 9dc506b Require pathspec ≥ 1.0.0 and follow Git's gitignore implementation
• 73b9c0b Drop support for Python 3.9
• 22d07ed indentation: Fix error message for check-multi-line-strings
• cfbfe9b README: Add Alpine Linux installation instructions
• a3b3bb3 README: Enhance wording of recursive directory lint
• e3b72f5 quoted-strings: Add missing quote-type: consistent docs
• e3d54cc quoted-strings: Add quote-type: consistent
• 0b4ddc8 CI: Update GitHub Actions
• 866f805 build: Remove license-files from pyproject.toml
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: ci, dependencies. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.