Update hadolint/hadolint-action action to v3.3.0

[renovate]

Coming soon: The Renovate bot (GitHub App) will be renamed to Mend. PRs from Renovate will soon appear from 'Mend'. Learn more here.

This PR contains the following updates:

Package	Type	Update	Change
hadolint/hadolint-action	action	minor	v3.1.0 -> v3.3.0

---

Release Notes

hadolint/hadolint-action (hadolint/hadolint-action)

v3.3.0

Compare Source

Features

• trigger release workflow (2332a7b)

v3.2.0

Compare Source

Features

• new minor release (3fc49fb)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

Summary by CodeRabbit

• Chores
  • Updated continuous integration linting action to the latest version to maintain tooling compatibility and stability, ensuring consistent code quality checks across pull requests and commits. No user-facing changes; no impact on application behavior or performance.

[coderabbitai]

📝 Walkthrough

Walkthrough

Updated CI workflow to use hadolint-action v3.3.0 instead of v3.1.0 in the Dockerfile linting step. No other workflow changes.

Changes

Cohort / File(s)	Summary of Changes
CI Workflow \.github/workflows/ci.yml	Bump hadolint-action from v3.1.0 to v3.3.0 in "Run hadolint" step

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Possibly related issues

• Dependency Dashboard #3 — Matches the same workflow file and the identical hadolint-action bump to v3.3.0.

Pre-merge checks and finishing touches

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title Check	✅ Passed	The title clearly and concisely summarizes the primary change in the PR (upgrading hadolint/hadolint-action to v3.3.0) and directly reflects the changes shown in the workflow update, so it meets the guideline for relevance and clarity.
Docstring Coverage	✅ Passed	No functions found in the changes. Docstring coverage check skipped.

✨ Finishing touches

🧪 Generate unit tests

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch renovate/hadolint-hadolint-action-3.x

Tip

👮 Agentic pre-merge checks are now available in preview!

Pro plan users can now enable pre-merge checks in their settings to enforce checklists before merging PRs.

• Built-in checks – Quickly apply ready-made checks to enforce title conventions, require pull request descriptions that follow templates, validate linked issues for compliance, and more.
• Custom agentic checks – Define your own rules using CodeRabbit’s advanced agentic capabilities to enforce organization-specific policies and workflows. For example, you can instruct CodeRabbit’s agent to verify that API documentation is updated whenever API schema files are modified in a PR. Note: Upto 5 custom checks are currently allowed during the preview period. Pricing for this feature will be announced in a few weeks.

Please see the documentation for more information.

Example:

reviews:
  pre_merge_checks:
    custom_checks:
      - name: "Undocumented Breaking Changes"
        mode: "warning"
        instructions: |
          Pass/fail criteria: All breaking changes to public APIs, CLI flags, environment variables, configuration keys, database schemas, or HTTP/GraphQL endpoints must be documented in the "Breaking Change" section of the PR description and in CHANGELOG.md. Exclude purely internal or private changes (e.g., code not exported from package entry points or explicitly marked as internal).

Please share your feedback with us on this Discord post.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[Copilot]

Pull Request Overview

This PR updates the hadolint/hadolint-action GitHub Action from v3.1.0 to v3.3.0 to incorporate the latest features and improvements available in the newer version.

• Updates hadolint-action to v3.3.0 (minor version update from v3.1.0)

---

_{Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.}

[PeterDaveHello]

@coderabbitai review

[coderabbitai]

✅ Actions performed

Review triggered.

Note: CodeRabbit is an incremental review system and does not re-review already reviewed commits. This command is applicable only when automatic reviews are paused.

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (1)

.github/workflows/ci.yml (1)

19-19: Pin hadolint action to commit SHA (supply‑chain hardening)

Replace in .github/workflows/ci.yml (line 19):

• uses: hadolint/hadolint-action@v3.3.0

• uses: hadolint/hadolint-action@2332a7b # v3.3.0

Optionally pin actions/checkout elsewhere in the workflow.

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 7fcdf38 and 44311a6.

📒 Files selected for processing (1)

• .github/workflows/ci.yml (1 hunks)

🔇 Additional comments (1)

.github/workflows/ci.yml (1)

19-21: LGTM: hadolint-action bumped to v3.3.0

Minor version update; no behavior changes expected for this step as configured.

If you want double‑check, skim the v3.2.0–v3.3.0 release notes for input changes related to the dockerfile option.