From 4396c7bdcfddf82666531dd96a0fe8d8d1edc584 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 9 Jun 2026 15:30:37 +0000
Subject: [PATCH] Bump the github-actions group across 1 directory with 2
 updates

Bumps the github-actions group with 2 updates in the / directory: [chromaui/action](https://github.com/chromaui/action) and [anthropics/claude-code-action](https://github.com/anthropics/claude-code-action).


Updates `chromaui/action` from 17.0.0 to 17.3.0
- [Release notes](https://github.com/chromaui/action/releases)
- [Changelog](https://github.com/chromaui/action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/chromaui/action/compare/7aca53e7aa87489020a97f633c1e7e82c12e5973...05812acac141ce7d317a3f787be88122bca27cf4)

Updates `anthropics/claude-code-action` from 1.0.131 to 1.0.141
- [Release notes](https://github.com/anthropics/claude-code-action/releases)
- [Commits](https://github.com/anthropics/claude-code-action/compare/4481e6d3c7bbb88db2a928ca3444c536f589c7c1...593d7a5c4e0073569f74772c2b7b64c30ec14707)

---
updated-dependencies:
- dependency-name: chromaui/action
  dependency-version: 17.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: anthropics/claude-code-action
  dependency-version: 1.0.141
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/chromatic.yml       | 2 +-
 .github/workflows/security-audit.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/chromatic.yml b/.github/workflows/chromatic.yml
index e8d3d2e1..391ac7d6 100644
--- a/.github/workflows/chromatic.yml
+++ b/.github/workflows/chromatic.yml
@@ -38,7 +38,7 @@ jobs:
         working-directory: lib
 
       - name: Run Chromatic
-        uses: chromaui/action@7aca53e7aa87489020a97f633c1e7e82c12e5973 # latest
+        uses: chromaui/action@05812acac141ce7d317a3f787be88122bca27cf4 # latest
         with:
           projectToken: ${{ secrets.CHROMATIC_PROJECT_TOKEN }}
           workingDir: lib
diff --git a/.github/workflows/security-audit.yaml b/.github/workflows/security-audit.yaml
index 6876c40c..959ca6e0 100644
--- a/.github/workflows/security-audit.yaml
+++ b/.github/workflows/security-audit.yaml
@@ -57,7 +57,7 @@ jobs:
           exit 1
 
       - name: Audit against SECURITY.md
-        uses: anthropics/claude-code-action@4481e6d3c7bbb88db2a928ca3444c536f589c7c1 # v1
+        uses: anthropics/claude-code-action@593d7a5c4e0073569f74772c2b7b64c30ec14707 # v1
         env:
           # `claude-code-action` resets `GH_TOKEN` to its own internal
           # workflow token, so setting `GH_TOKEN` at this scope is