Bump actions/dependency-review-action from 2.4.0 to 2.4.1

[dependabot]

Bumps actions/dependency-review-action from 2.4.0 to 2.4.1.

Release notes

Sourced from actions/dependency-review-action's releases.

2.4.1

This patch release fixes the bugs below:

• Display the dependency name instead of the manifest name in the detailed list of dependents.
• Fix an issue where undefined GHSAs would remove filter out all changes.

Commits

• 9c96258 Update to 2.4.1
• f076f22 Merge pull request #280 from actions/format-bugs
• 88b817e adding dist
• 2dd6c6a Fixing a bug with GHSA filtering.
• 1d9bfbb Document the behavior of the GHSA filtering function.
• f632f5f adding dist
• ee42a65 Show the dependency name instead of the manifest.
• 6f58092 Merge pull request #278 from actions/dependabot/npm_and_yarn/typescript-eslin...
• b81bfe5 Bump @​typescript-eslint/eslint-plugin from 5.39.0 to 5.40.0
• 5679c0f Merge pull request #277 from actions/dependabot/npm_and_yarn/typescript-eslin...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov-commenter]

Codecov Report

Merging #1117 (f053247) into main (4b1fa66) will decrease coverage by 0.03%.
The diff coverage is n/a.

@@            Coverage Diff             @@
##             main    #1117      +/-   ##
==========================================
- Coverage   63.82%   63.78%   -0.04%     
==========================================
  Files          82       82              
  Lines        7593     7593              
==========================================
- Hits         4846     4843       -3     
- Misses       2121     2123       +2     
- Partials      626      627       +1     

Flag	Coverage Δ
e2etests	48.62% <ø> (ø)
unittests	40.82% <ø> (-0.05%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
pkg/types/alpine/v0.0.1/entry.go	71.13% <0.00%> (-1.22%)	⬇️

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.