Aggregate passing dependabot PRs: actions/setup-node and github/codeql-action

[Copilot]

Aggregates 2 passing dependabot PRs with actual changes to apply. 7 other passing PRs are duds (changes already applied) and need @dependabot recreate.

Changes

• actions/setup-node: 6.0.0 → 6.1.0 (build(deps): bump actions/setup-node from 6.0.0 to 6.1.0 #3003)
• github/codeql-action: 4.31.4 → 4.31.7 (build(deps): bump github/codeql-action from 4.31.4 to 4.31.7 #3002)

Duds requiring manual intervention

Comment @dependabot recreate on: #2870, #2910, #3004, #2907, #2911, #2912, #2913

Original prompt

there are a few dependabot pr in this repo that are passing ci - can you see which ones?

if you can - can you please create an aggregation pr so that we can land them all together

if you cant - dont worry - this wont work

if some of the prs change the same file then you want to pick them in reverse order so as not to create conflicts

do NOT pick either the mypy or docutils prs

do NOT add an initial commit or any commits other than the picked ones (squash any related changes to the picked commits if needed)

js deps might need to be rebuilt if they are changing the expected build

---

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

[netlify]

✅ Deploy Preview for nifty-bassi-e26446 ready!

Name	Link
🔨 Latest commit	949570e
🔍 Latest deploy log	https://app.netlify.com/projects/nifty-bassi-e26446/deploys/6939afbb93e2020008f2121c
😎 Deploy Preview	https://deploy-preview-3005--nifty-bassi-e26446.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.