chore(deps): bump rojopolis/spellcheck-github-actions from 0.60.0 to 0.62.0

[dependabot]

Bumps rojopolis/spellcheck-github-actions from 0.60.0 to 0.62.0.

Release notes

Sourced from rojopolis/spellcheck-github-actions's releases.

0.62.0

What's Changed

• Workflow clean up by @​jonasbn in rojopolis/spellcheck-github-actions#355
• More workflow clean up by @​jonasbn in rojopolis/spellcheck-github-actions#356
• Bumped lxml version to address known CVEs by @​jonasbn in rojopolis/spellcheck-github-actions#357
• Upgrade for pymdown-extensions by @​jonasbn in rojopolis/spellcheck-github-actions#358
• Bumped Markdown dependency version to patched version by @​jonasbn in rojopolis/spellcheck-github-actions#359
• Release 0.62.0 by @​jonasbn in rojopolis/spellcheck-github-actions#361

Full Changelog: rojopolis/spellcheck-github-actions@0.61.0...0.62.0

0.61.0

What's Changed

• Bump rojopolis/spellcheck-github-actions from 0.59.0 to 0.60.0 by @​dependabot[bot] in rojopolis/spellcheck-github-actions#337
• Bump docker/login-action from 4.0.0 to 4.1.0 by @​dependabot[bot] in rojopolis/spellcheck-github-actions#339
• Bump docker/build-push-action from 7.0.0 to 7.1.0 by @​dependabot[bot] in rojopolis/spellcheck-github-actions#342
• Bump actions/upload-artifact from 7.0.0 to 7.0.1 by @​dependabot[bot] in rojopolis/spellcheck-github-actions#341
• Added Claude configuration for assistance with chores and maintenance by @​jonasbn in rojopolis/spellcheck-github-actions#345
• Bump python from 3.14.3-slim-trixie to 3.14.5-slim-trixie by @​dependabot[bot] in rojopolis/spellcheck-github-actions#344
• Bump docker/setup-buildx-action from 4.0.0 to 4.1.0 by @​dependabot[bot] in rojopolis/spellcheck-github-actions#348
• Bump docker/metadata-action from 6.0.0 to 6.1.0 by @​dependabot[bot] in rojopolis/spellcheck-github-actions#349
• Bump docker/build-push-action from 7.1.0 to 7.2.0 by @​dependabot[bot] in rojopolis/spellcheck-github-actions#347
• Bump docker/login-action from 4.1.0 to 4.2.0 by @​dependabot[bot] in rojopolis/spellcheck-github-actions#350
• Bump actions/checkout from 6.0.2 to 6.0.3 by @​dependabot[bot] in rojopolis/spellcheck-github-actions#352
• Bump docker/setup-qemu-action from 4.0.0 to 4.1.0 by @​dependabot[bot] in rojopolis/spellcheck-github-actions#351
• Release 0.61.0 by @​jonasbn in rojopolis/spellcheck-github-actions#353

Full Changelog: rojopolis/spellcheck-github-actions@0.60.0...0.61.0

Changelog

Sourced from rojopolis/spellcheck-github-actions's changelog.

Change Log for spellcheck-github-actions

0.62.0, 2026-06-19, security release, update recommended

• Bumped lxml from 5.3.0 to 5.4.0 to address known CVEs via PR #357.

• Bumped pymdown-extensions to patched version 10.21.3 via PR #358.

• Bumped Markdown from 3.7 to 3.8.1 to patched version via PR #359.

• Cleaned up GitHub Actions workflows using zizmor and removed ratchet annotations via PR #355 and PR #356.

• Clarified examples in README.

0.61.0, 2026-06-14, minor feature release, update not required

• Docker based image updated for Python 3.14.5 slim trixie via PR #344 from Dependabot.

0.60, 2026-03-14, minor feature release, update not required

• Docker based image updated for Python 3.14.3 slim trixie via PR #325 from Dependabot.

• Cleaned up the error messaging, to address issue #328 from @​akohout-hai, the error message is now more correct, but not improved in general

0.59.0, 2026-03-02, feature release, update recommended

• Improvements have been added to the docker entrypoint, based on a PR from @​akohout-hai which fixes an issue with handling of spaces in files names and directories, see PR #322 for details. This is his first contribution to the project and I want to thank him for his contribution, which is highly appreciated.

• Docker based image updated to Python 3.14.3 slim trixie via PR #320 from Dependabot.

0.58.0, 2026-01-20, security release, update not required

• A minor security issue in the dependency: pymdown-extensions, which is used by the core component PySpelling
  • GHSA-r6h4-mm7h-8pmq
  • Original issue: facelessuser/pymdown-extensions#2716

0.57.0, 2026-01-14, maintenance release, update not required

• Docker based image updated to Python 3.14.2 slim trixie via PR #310 from Dependabot. The version is the same, the image has had updates.

0.56.0, 2025-12-27, feature and maintenance release, update not required

• Support for Portuguese (Portugal and Brazil) for both Hunspell and Aspell, requested by: @​mdiazgoncalves via issue #298
• Docker image updated to Python 3.14.2 trixie slim Release notes for Python 3.14.2

0.55.0, 2025-11-27, maintenance release, update not required

• Via an issue #293 from @​shoverbj, an update to the core component PySpelling from version 2.12.0 to version 2.12.1 was made, this allows for use of large dictionaries with Aspell

0.54.0, 2025-11-05, feature release, update not required

... (truncated)

Commits

• 390a08e Merge pull request #361 from rojopolis/release-0.62.0
• 7c0a079 Fix YAML indentation in README with: blocks
• 56f3bd3 Updated local dictionary
• 9d173e1 Release 0.62.0
• 1d3c839 Bumped Markdown dependency version to patched version (#359)
• 014e739 Bumped pymdown-extensions to a patched version (#358)
• 76b3c1d Merge pull request #357 from rojopolis/lxml_upgrade
• 8475314 Bumped lxml version to address known CVEs
• 4ec661e Clarified examples in README
• d90f3c8 Merge pull request #356 from rojopolis/workflow_clean_up_follow_up
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[overcut-ai]

Completed Working on "Code Review"

✅ Code review complete. No issues found - all changes look good! ✅

✅ Workflow completed successfully.

---

👉 View complete log

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
actions/rojopolis/spellcheck-github-actions	390a08ee9c46943112f21d2ff671649a2bacd33f	🟢 4.7	Details Check Score Reason Code-Review ⚠️ 0 Found 0/4 approved changesets -- score normalized to 0 Maintained 🟢 10 30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies 🟢 8 dependency not pinned by hash detected -- score normalized to 8 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Security-Policy ⚠️ 0 security policy file not detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Packaging 🟢 10 packaging workflow detected

Scanned Files

• .github/workflows/spellcheck.yml