Bump the compatible group across 1 directory with 2 updates

[dependabot]

Bumps the compatible group with 2 updates in the / directory: actions/create-github-app-token and frequenz-floss/gh-action-dependabot-migrate.

Updates actions/create-github-app-token from 3.0.0 to 3.1.1

Release notes

Sourced from actions/create-github-app-token's releases.

v3.1.1

3.1.1 (2026-04-11)

Bug Fixes

• improve error message when app identifier is empty (#362) (07e2b76), closes #249

v3.1.0

3.1.0 (2026-04-11)

Bug Fixes

• deps: bump p-retry from 7.1.1 to 8.0.0 (#357) (3bbe07d)

Features

• add client-id input and deprecate app-id (#353) (e6bd4e6)
• update permission inputs (#358) (076e948)

Commits

• 1b10c78 build(release): 3.1.1 [skip ci]
• 07e2b76 fix: improve error message when app identifier is empty (#362)
• ea01216 ci: remove publish-immutable-action workflow (#361)
• 7bd0371 build(release): 3.1.0 [skip ci]
• e6bd4e6 feat: add client-id input and deprecate app-id (#353)
• 076e948 feat: update permission inputs (#358)
• 3bbe07d fix(deps): bump p-retry from 7.1.1 to 8.0.0 (#357)
• 28a99e3 build(deps-dev): bump c8 from 10.1.3 to 11.0.0
• 4df5060 build(deps-dev): bump open-cli from 8.0.0 to 9.0.0
• 4843c53 build(deps-dev): bump the development-dependencies group with 3 updates
• See full diff in compare view

Updates frequenz-floss/gh-action-dependabot-migrate from 1.0.0 to 1.1.0

Release notes

Sourced from frequenz-floss/gh-action-dependabot-migrate's releases.

v1.1.0

What's Changed

• Bump actions/create-github-app-token from 2.2.1 to 3.0.0 by @​dependabot[bot] in frequenz-floss/gh-action-dependabot-migrate#12
• Bump dependabot/fetch-metadata from e74077de530ef48d09568e2268558f6093a85509 to 4c0bbfe3a642ee5826e71be3cb91cd949dc0a897 by @​dependabot[bot] in frequenz-floss/gh-action-dependabot-migrate#13
• Allow inline migration scripts by @​llucax in frequenz-floss/gh-action-dependabot-migrate#11

Full Changelog: frequenz-floss/gh-action-dependabot-migrate@v1.0.0...v1.1.0

Commits

• b389f72 Merge pull request #11 from llucax/internal-script
• fe4731f Merge pull request #13 from frequenz-floss/dependabot/github_actions/dependab...
• 62b55eb Merge pull request #12 from frequenz-floss/dependabot/github_actions/actions/...
• a22a23f Bump dependabot/fetch-metadata
• c1c311b Bump actions/create-github-app-token from 2.2.1 to 3.0.0
• 90f41ef Allow inline migration scripts
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions