build(deps): bump the actions group across 1 directory with 2 updates

[dependabot]

Bumps the actions group with 2 updates in the / directory: gradle/actions and fossas/fossa-action.

Updates gradle/actions from 6.0.1 to 6.1.0

Release notes

Sourced from gradle/actions's releases.

v6.1.0

New: Basic Cache Provider

A new MIT-licensed Basic Caching provider is now available as an alternative to the proprietary Enhanced Caching provided by gradle-actions-caching. Choose Basic Caching by setting cache-provider: basic on setup-gradle or dependency-submission actions.

• Built on @actions/cache -- fully open source
• Caches ~/.gradle/caches and ~/.gradle/wrapper directories
• Cache key derived from build files (*.gradle*, gradle-wrapper.properties, etc.)
• Clean cache on build file changes (no restore keys, preventing stale entry accumulation)

Limitations vs Enhanced Caching: No cache cleanup, no deduplication of cached content, cached content is fixed unless build files change.

Revamped Licensing & Distribution Documentation

• New DISTRIBUTION.md documents the licensing of each component (particularly Basic Caching vs Enhanced Caching)
• Simplified licensing notices in README, docs, and runtime log output
• Clear usage tiers: Enhanced Caching is free for public repos and in Free Preview for private repos

What's Changed

• Use a unique cache entry for wrapper-validation test by @​bigdaz in gradle/actions#921
• Update Dependencies by @​bigdaz in gradle/actions#922
• Update dependencies and resolve npm vulnerabilities by @​bigdaz in gradle/actions#933
• Add open-source 'basic' cache provider and revamp licensing documentation by @​bigdaz in gradle/actions#930
• Restructure caching documentation for basic and enhanced providers by @​bigdaz in gradle/actions#934

Full Changelog: gradle/actions@v6.0.1...v6.1.0

Commits

• 50e97c2 Link to docs for caching providers
• f2e6298 Restructure caching documentation for basic and enhanced providers (#934)
• b294b1e Really fix integ-test-full
• 83d3189 Revise license details for gradle-actions-caching
• 1d5db06 Update license link for gradle-actions-caching component
• 1c80961 Fix license link for Enhanced Caching component
• 9e99920 Fix integ-test-full workflow
• bb8aaaf Fix workflow permissions
• f5dfb43 [bot] Update dist directory
• ff9ae24 Add open-source 'basic' cache provider and revamp licensing documentation (#930)
• Additional commits viewable in compare view

Updates fossas/fossa-action from 1.8.0 to 1.9.0

Release notes

Sourced from fossas/fossa-action's releases.

v1.9.0

What's Changed

• Bump actions/checkout from 5 to 6 by @​dependabot[bot] in fossas/fossa-action#245
• Bump @​actions/tool-cache from 3.0.1 to 4.0.0 by @​dependabot[bot] in fossas/fossa-action#267
• Bump undici from 6.23.0 to 6.24.1 by @​spatten in fossas/fossa-action#275
• Add CI workflow to auto-rebuild dist by @​spatten in fossas/fossa-action#276
• Bump actions/upload-artifact from 4 to 7 by @​dependabot[bot] in fossas/fossa-action#272
• Add CodeRabbit configuration by @​chad-fossa in fossas/fossa-action#271
• Bump @​types/node from 25.2.0 to 25.2.1 by @​dependabot[bot] in fossas/fossa-action#269

New Contributors

• @​chad-fossa made their first contribution in fossas/fossa-action#271

Full Changelog: fossas/fossa-action@v1.8.0...v1.9.0

Commits

• ff70fe9 Bump @​types/node from 25.2.0 to 25.2.1 (#269)
• 266ac4f Add CodeRabbit configuration (#271)
• ad09c5f Bump actions/upload-artifact from 4 to 7 (#272)
• 0bdc47f Add CI workflow to auto-rebuild dist (#276)
• b74b788 Bump undici from 6.23.0 to 6.24.1 (#275)
• c9be25a Bump @​actions/tool-cache from 3.0.1 to 4.0.0 (#267)
• edcc582 Bump actions/checkout from 5 to 6 (#245)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions