chore(deps): update docker/build-push-action action to v7.1.0

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Pending
docker/build-push-action	action	minor	v7.0.0 → v7.1.0	v7.2.0

---

Release Notes

docker/build-push-action (docker/build-push-action)

v7.1.0

Compare Source

• Git context query format support by @​crazy-max in #​1505
• Bump @​docker/actions-toolkit from 0.79.0 to 0.87.0 by @​crazy-max in #​1505
• Bump brace-expansion from 1.1.12 to 1.1.13 in #​1500
• Bump fast-xml-parser from 5.4.2 to 5.5.7 in #​1489
• Bump flatted from 3.3.3 to 3.4.2 in #​1491
• Bump glob from 10.3.12 to 10.5.0 in #​1490
• Bump handlebars from 4.7.8 to 4.7.9 in #​1497
• Bump lodash from 4.17.23 to 4.18.1 in #​1510
• Bump picomatch from 4.0.3 to 4.0.4 in #​1496
• Bump undici from 6.23.0 to 6.24.1 in #​1486
• Bump vite from 7.3.1 to 7.3.2 in #​1509

Full Changelog: docker/build-push-action@v7.0.0...v7.1.0

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At 12:00 AM through 04:59 AM and 10:00 PM through 11:59 PM, Monday through Friday (* 0-4,22-23 * * 1-5)
  • Only on Sunday and Saturday (* * * * 0,6)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

Renovate PR Review Results

⚖️ Safety Assessment: ✅ Safe

🔍 Release Content Analysis

New Features:

• Added Git context query format support, allowing URL query parameters when using a Git URL as the build context

Dependency Updates (security/bug fixes):

• @docker/actions-toolkit 0.79.0 → 0.87.0 (major toolkit update underlying the action)
• fast-xml-parser 5.4.2 → 5.5.7 — security-related fix
• handlebars 4.7.8 → 4.7.9 — known template injection vulnerability fix
• undici 6.23.0 → 6.24.1 — HTTP client security/bug fix
• brace-expansion 1.1.12 → 1.1.13, flatted 3.3.3 → 3.4.2, glob 10.3.12 → 10.5.0, lodash 4.17.23 → 4.18.1, picomatch 4.0.3 → 4.0.4, vite 7.3.1 → 7.3.2

Breaking Changes: None. This is a semver-minor release; the new Git context query format is purely additive.

🎯 Impact Scope Investigation

Usage Location:

• Single usage in .github/workflows/release-please.yml:126, in the push-docker job

Current Configuration:

- uses: docker/build-push-action@bcafcacb16a39f128d818304e6c9c0c18556b85f # v7.1.0
  with:
    context: .
    push: true
    platforms: linux/amd64,linux/arm64
    tags: ${{ steps.meta.outputs.tags }}
    labels: ${{ steps.meta.outputs.labels }}
    build-args: |
      GHASEC_VERSION=${{ needs.release-please.outputs.version }}
    cache-from: type=gha,scope=release
    cache-to: type=gha,scope=release,mode=max

Impact Assessment:

• The current usage sets context: . (local directory), not a Git URL context — the new Git query format feature is irrelevant to this usage
• All existing inputs (context, push, platforms, tags, labels, build-args, cache-from, cache-to) remain fully supported and unchanged
• The SHA pin in the diff (d08e5c354a6adb9ed34480a06d141179aa583294 → bcafcacb16a39f128d818304e6c9c0c18556b85f) is correctly updated to match v7.1.0
• No other files in the repository reference this action

💡 Recommended Actions

• No code changes or configuration modifications required
• The PR is safe to merge as-is; the update is additive-only and includes beneficial security dependency bumps
• Note: Renovate indicates v7.2.0 is already pending — consider watching for that update soon after merging

🔗 Reference Links

• v7.1.0 Release Notes
• v7.0.0 → v7.1.0 Full Changelog
• Git context query format docs

Generated by koki-develop/claude-renovate-review