ci(github-action): update codecov/codecov-action action to v5.4.3

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	OpenSSF
codecov/codecov-action	action	patch	v5.4.2 -> v5.4.3

---

Release Notes

codecov/codecov-action (codecov/codecov-action)

v5.4.3

Compare Source

What's Changed

• build(deps): bump github/codeql-action from 3.28.13 to 3.28.17 by @​app/dependabot in https://github.com/codecov/codecov-action/pull/1822
• fix: OIDC on forks by @​joseph-sentry in https://github.com/codecov/codecov-action/pull/1823

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.4.2..v5.4.3

---

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
actions/codecov/codecov-action	18283e04ce6e62d37312384ff67231eb8fd56d24	🟢 7.6	Details Check Score Reason Code-Review 🟢 8 Found 15/17 approved changesets -- score normalized to 8 Binary-Artifacts 🟢 10 no binaries found in the repo Maintained 🟢 10 19 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Dependency-Update-Tool 🟢 10 update tool detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies ⚠️ 2 dependency not pinned by hash detected -- score normalized to 2 Vulnerabilities 🟢 10 0 existing vulnerabilities detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 10 security policy file detected License 🟢 10 license file detected SAST 🟢 10 SAST tool is run on all commits CI-Tests 🟢 10 28 out of 28 merged PRs checked by a CI test -- score normalized to 10 Contributors 🟢 10 project has 13 contributing companies or organizations

Scanned Files

• .github/workflows/dotnet.yml

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 61.24%. Comparing base (025e932) to head (d68bb52).

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #107   +/-   ##
=======================================
  Coverage   61.24%   61.24%           
=======================================
  Files          77       77           
  Lines        1548     1548           
  Branches      117      117           
=======================================
  Hits          948      948           
  Misses        582      582           
  Partials       18       18           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.