Bump pilosus/action-pip-license-checker from 2 to 3

[dependabot]

Bumps pilosus/action-pip-license-checker from 2 to 3.

Release notes

Sourced from pilosus/action-pip-license-checker's releases.

v3: Check SPDX license identifiers first, fallback to text names

[v3.0.0] - 2025-07-22

While action API's backward compatibility is not broken, updated upstream checker has changed it's logic of searching for the license identifiers.

Changed

• When using PyPI JSON API's to get a license name, the checker tries to read a SPDX license identifier from the license_expr first and if not found, falls back to the licese field.

Changelog

Sourced from pilosus/action-pip-license-checker's changelog.

[v3.1.0] - 2025-07-24

Added

• PSF-2.0 license support

[v3.0.0] - 2025-07-22

See release notes for v3.0.0-r1c

[v3.0.0-rc1] - 2025-07-22

While action API's backward compatibility is not broken, updated upstream checker has changed it's logic of searching for the license identifiers.

Changed

• When using PyPI JSON API's to get a license name, the checker tries to read a SPDX license identifier from the license_expr first and if not found, falls back to the licese field.

[v2.0.0] - 2023-04-14

Release breaks backward compatibility by adding a mandatory Misc column to the reports no matter the verbosity level. See Changed sections for more details.

Changed

• Misc column no longer depends on the verbosity level and is always shown. For stdout reports (default format) visibility of the column can be suppresed via custom formatter (e.g. %s %s %s to show only first three columns)
• Default formatter option spans 4 columns (Dependency, License name, License type, Misc) and equals to %-35s %-55s %-20s %-40s.
• totals report formatting assumes that the first two columns delimited with the same separator; the first separator is used (by default a single space)

Added

• Report output input field report-format to support stdout (default tabular report printed to the standard output), json, json-pretty and csv formats

Fixed

• Address the bug with supporting BigInteger in epoch, major, minor, and patch parts of the Python-native package versions

[v1.0.0] - 2023-02-25

... (truncated)

Commits

• e909b02 prep v3.1.0
• a5ebd0c tech: update readme to include v3 in examples
• c6180af tech: prep v3.0.0
• 80f4fd0 tech: prep release v3.0.0-rc1 (#63)
• 4cbf166 Bump DeLaGuardo/setup-clojure from 13.1 to 13.2 (#61)
• 2d1c4b8 Bump DeLaGuardo/setup-clojure from 13.0 to 13.1 (#60)
• 56c1fb7 Bump DeLaGuardo/setup-clojure from 12.5 to 13.0 (#59)
• 5566de4 Bump DeLaGuardo/setup-clojure from 12.2 to 12.5 (#58)
• 1e4b35c Bump DeLaGuardo/setup-clojure from 12.1 to 12.2 (#56)
• 1e292d9 Bump actions/checkout from 3 to 4 (#54)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)