Pin dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
@tailwindcss/postcss (source)	devDependencies	pin	^4 → 4.2.1
actions/checkout	action	pinDigest	→ de0fac2
actions/download-artifact	action	pinDigest	→ d3f86a1
actions/upload-artifact	action	pinDigest	→ ea165f8
asdf-vm/actions	action	pinDigest	→ b7bcd02
axllent/mailpit		pinDigest	→ 0b5c5f7
caddy	final	pinDigest	→ fce4f15
codecov/codecov-action	action	pinDigest	→ 75cd116
docker/build-push-action	action	pinDigest	→ 10e90e3
docker/dockerfile	syntax	pinDigest	→ 4c116b6
docker/login-action	action	pinDigest	→ c94ce9f
docker/metadata-action	action	pinDigest	→ c299e40
docker/setup-buildx-action	action	pinDigest	→ 8d2750c
gacts/purge-jsdelivr-cache	action	pinDigest	→ 8d92aea
ghcr.io/astral-sh/uv	final	pinDigest	→ 4de5495
ghost/traffic-analytics		pinDigest	→ 9cf214b
minio/mc		pinDigest	→ a7fe349
minio/minio		pinDigest	→ 149fdd7
mysql		pinDigest	→ 679e7e9
node	final	pinDigest	→ 8b1d14e
node	final	pinDigest	→ 752ea8a
peter-evans/repository-dispatch	action	pinDigest	→ ff45666
redis		pinDigest	→ 352c1fd
slackapi/slack-github-action	action	pinDigest	→ 91efab1
stripe/stripe-cli		pinDigest	→ 33856eb
szenius/set-timezone	action	pinDigest	→ 1f9716b
tailwindcss (source)	devDependencies	pin	^4 → 4.2.1
tinybirdco/tinybird-local	service	pinDigest	→ 3424e0e
tinybirdco/tinybird-local		pinDigest	→ 3424e0e
tryghost/actions	action	pinDigest	→ 0204421

⚠️ Renovate's pin functionality does not currently wire in the release age for a package, so the Minimum Release Age checks can apply. You will need to manually validate the Minimum Release Age for these package(s).

Add the preset :preserveSemverRanges to your config if you don't want to pin your dependencies.

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - Only on Sunday and Saturday ( * * * * 0,6 ), Between 12:00 AM and 12:59 PM, only on Monday ( * 0-12 * * 1 ) in timezone Etc/UTC.

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 73.19%. Comparing base (6bd8fdd) to head (63fec90).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main   #27144      +/-   ##
==========================================
- Coverage   73.19%   73.19%   -0.01%     
==========================================
  Files        1531     1531              
  Lines      121805   121805              
  Branches    14696    14696              
==========================================
- Hits        89156    89154       -2     
- Misses      31634    31635       +1     
- Partials     1015     1016       +1     

Flag	Coverage Δ
admin-tests	54.39% <ø> (-0.02%)	⬇️
e2e-tests	73.19% <ø> (-0.01%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[sonarqubecloud]

Quality Gate failed

Failed conditions
1 Security Hotspot

See analysis details on SonarQube Cloud