chore(deps): bump mikefarah/yq from 4.53.2 to 4.53.3 in /actions/helm/update-chart-values in the github-actions-dependencies group across 1 directory

[dependabot]

Bumps the github-actions-dependencies group with 1 update in the /actions/helm/update-chart-values directory: mikefarah/yq.

Updates mikefarah/yq from 4.53.2 to 4.53.3

Release notes

Sourced from mikefarah/yq's releases.

v4.53.3

• Add --ini-preserve-quotes flag for INI round-trip quote preservation (#2728) Thanks @​toller892!
• Fix: reset INI decoder state on init (#2719) Thanks @​xieby1!
• Fix: decode properties array bracket paths (#2693) Thanks @​cyphercodes!
• Fix: preserve floats with trailing zero when encoding YAML to JSON (#2701) Thanks @​ChrisJr404!
• Fix: JSON to TOML root scope and null handling (#2689) Thanks @​LovesAsuna!
• Fix: reset TOML decoder finished flag on Init for multi-doc evaluation (#2704) Thanks @​terminalchai!
• Fix: reset TOML decoder between files when evaluating all at once (#2685) Thanks @​terminalchai!
• Fix: preserve TOML inline table array scope (#2694) Thanks @​cyphercodes!
• Fix: preserve empty TOML arrays in tables (#2686) Thanks @​cyphercodes!
• Fix: TOML encoder uses inline tables for YAML FlowStyle mappings (#2687)
• Fix nested inline YAML merge explode (#2699) Thanks @​cyphercodes!
• Fix repeatString overflow test on 32-bit platforms (#2680) Thanks @​jandubois!
• Bumped dependencies

Changelog

Sourced from mikefarah/yq's changelog.

4.53.3:

• Add --ini-preserve-quotes flag for INI round-trip quote preservation (#2728) Thanks @​toller892!
• Fix: reset INI decoder state on init (#2719) Thanks @​xieby1!
• Fix: decode properties array bracket paths (#2693) Thanks @​cyphercodes!
• Fix: preserve floats with trailing zero when encoding YAML to JSON (#2701) Thanks @​ChrisJr404!
• Fix: JSON to TOML root scope and null handling (#2689) Thanks @​LovesAsuna!
• Fix: reset TOML decoder finished flag on Init for multi-doc evaluation (#2704) Thanks @​terminalchai!
• Fix: reset TOML decoder between files when evaluating all at once (#2685) Thanks @​terminalchai!
• Fix: preserve TOML inline table array scope (#2694) Thanks @​cyphercodes!
• Fix: preserve empty TOML arrays in tables (#2686) Thanks @​cyphercodes!
• Fix: TOML encoder uses inline tables for YAML FlowStyle mappings (#2687)
• Fix nested inline YAML merge explode (#2699) Thanks @​cyphercodes!
• Fix repeatString overflow test on 32-bit platforms (#2680) Thanks @​jandubois!
• Bumped dependencies

4.53.2:

• Fixing release process

4.53.1:

• Releases and tags now signed and immutable!
• Add system(command; args) operator (disabled by default) (#2640)
• TOML encoder: prefer readable table sections over inline tables (#2649)
• Fix TOML encoder to quote keys containing special characters (#2648)
• Add string slicing support (#2639)
• Fix findInArray misuse on MappingNodes in equality and contains (#2645) Thanks @​jandubois!
• Fix panic on negative slice indices that underflow after adjustment (#2646) Thanks @​jandubois!
• Fix stack overflow from circular alias in traverse (#2647) Thanks @​jandubois!
• Fix panic and OOM in repeatString for large repeat counts (#2644) Thanks @​jandubois!
• Bumped dependencies

4.52.5:

• Fix: reset TOML decoder state between files (#2634) thanks @​terminalchai
• Fix: preserve original filename when using --front-matter (#2613) thanks @​cobyfrombrooklyn-bot
• Fix typo in filename (#2611) thanks @​alexandear
• Bumped dependencies

4.52.4:

• Dropping windows/arm - no longer supported in cross-compile

4.52.3:

• Fixing comments in TOML arrays (#2592)
• Bumped dependencies

4.52.2:

• Fixed bad instructions file breaking go-install (#2587) Thanks @​theyoprst
• Fixed TOML table scope after comments (#2588) Thanks @​tomers
• Multiply uses a readonly context (#2558)
• Fixed merge globbing wildcards in keys (#2564)

... (truncated)

Commits

• 1b9b4ac Bumping version
• 9b67d65 Portable bump version
• f8850c0 Preparting release
• c5a3423 Refining
• 196a99e Agent disclosure
• fa99bf1 Merging agents
• 7111761 docs: add AGENTS.md with Cursor Cloud development instructions (#2735)
• 0cb1bbe Fixing test
• 8fc8eed Minor doc update
• 7620a72 fix: reset INI decoder state on init (#2719)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Hi, thank you for creating your PR, we will check it out very soon

[github-actions]

Super-linter summary

Language	Validation result
BIOME_FORMAT	Pass ✅
BIOME_LINT	Pass ✅
CHECKOV	Pass ✅
GITHUB_ACTIONS_ZIZMOR	Pass ✅
GITLEAKS	Pass ✅
GIT_MERGE_CONFLICT_MARKERS	Pass ✅
JSCPD	Pass ✅
PRE_COMMIT	Pass ✅
SPELL_CODESPELL	Pass ✅
TRIVY	Fail ❌
YAML	Pass ✅
YAML_PRETTIER	Pass ✅

Super-linter detected linting errors

For more information, see the GitHub Actions workflow run

Powered by Super-linter

TRIVY

Report Summary

┌──────────────────────────────────────────────┬────────────┬─────────────────┬───────────────────┬─────────┐
│                    Target                    │    Type    │ Vulnerabilities │ Misconfigurations │ Secrets │
├──────────────────────────────────────────────┼────────────┼─────────────────┼───────────────────┼─────────┤
│ actions/helm/generate-docs/package-lock.json │    npm     │        2        │         -         │    -    │
├──────────────────────────────────────────────┼────────────┼─────────────────┼───────────────────┼─────────┤
│ actions/helm/release-chart/package-lock.json │    npm     │        0        │         -         │    -    │
├──────────────────────────────────────────────┼────────────┼─────────────────┼───────────────────┼─────────┤
│ tests/charts/package-lock.json               │    npm     │        0        │         -         │    -    │
├──────────────────────────────────────────────┼────────────┼─────────────────┼───────────────────┼─────────┤
│ Dockerfile                                   │ dockerfile │        -        │         0         │    -    │
├──────────────────────────────────────────────┼────────────┼─────────────────┼───────────────────┼─────────┤
│ tests/application/Dockerfile                 │ dockerfile │        -        │         0         │    -    │
└──────────────────────────────────────────────┴────────────┴─────────────────┴───────────────────┴─────────┘
Legend:
- '-': Not scanned
- '0': Clean (no security findings detected)


For OSS Maintainers: VEX Notice
--------------------------------
If you're an OSS maintainer and Trivy has detected vulnerabilities in your project that you believe are not actually exploitable, consider issuing a VEX (Vulnerability Exploitability eXchange) statement.
VEX allows you to communicate the actual status of vulnerabilities in your project, improving security transparency and reducing false positives for your users.
Learn more and start using VEX: https://trivy.dev/docs/v0.69/guide/supply-chain/vex/repo#publishing-vex-documents

To disable this notice, set the TRIVY_DISABLE_VEX_NOTICE environment variable.


actions/helm/generate-docs/package-lock.json (npm)
==================================================
Total: 2 (UNKNOWN: 0, LOW: 0, MEDIUM: 2, HIGH: 0, CRITICAL: 0)

┌─────────────┬────────────────┬──────────┬────────┬───────────────────┬───────────────┬─────────────────────────────────────────────────────────────┐
│   Library   │ Vulnerability  │ Severity │ Status │ Installed Version │ Fixed Version │                            Title                            │
├─────────────┼────────────────┼──────────┼────────┼───────────────────┼───────────────┼─────────────────────────────────────────────────────────────┤
│ js-yaml     │ CVE-2026-53550 │ MEDIUM   │ fixed  │ 4.1.1             │ 4.2.0         │ JS-YAML: Quadratic-complexity DoS in merge key handling via │
│             │                │          │        │                   │               │ repeated aliases                                            │
│             │                │          │        │                   │               │ https://avd.aquasec.com/nvd/cve-2026-53550                  │
├─────────────┼────────────────┤          │        ├───────────────────┼───────────────┼─────────────────────────────────────────────────────────────┤
│ markdown-it │ CVE-2026-48988 │          │        │ 14.1.1            │ 14.2.0        │ markdown-it is a Markdown parser. Versions 14.1.1 and below │
│             │                │          │        │                   │               │ contain a ...                                               │
│             │                │          │        │                   │               │ https://avd.aquasec.com/nvd/cve-2026-48988                  │
└─────────────┴────────────────┴──────────┴────────┴───────────────────┴───────────────┴─────────────────────────────────────────────────────────────┘