Bump azure-functions-core-tools from 4.11.0 to 4.12.0 in /api

[dependabot]

Bumps azure-functions-core-tools from 4.11.0 to 4.12.0.

Release notes

Sourced from azure-functions-core-tools's releases.

4.12.0

Azure Functions CLI 4.12.0

Host Version

• Host Runtime Version: 4.1048.200
• In-Proc CLI:
  • CLI Version: 4.5.0
  • Host Runtime Version: 4.48.100 (includes 4.848.100, 4.648.100)

Changes

• Fix HttpsProxyAgent is not a constructor error in install.js when installing behind a proxy (https-proxy-agent v9 requires a named import).
• Remove azure-functions-core-tools from the devDependencies of generated function app templates (package-js.json, package-js-v4.json, package-ts.json, package-ts-v4.json). Users get the CLI from their system install; pulling it in again via npm install doubled disk usage and made every project's install fragile to Core Tools postinstall regressions.

Preview Feature

• Add preview Go language support to func init, func start, func pack, and func publish (#4875, #4892, #4943). Behaviour, build/publish flags, and deployment layout may change before GA.

Changelog

Sourced from azure-functions-core-tools's changelog.

Azure Functions CLI 4.12.0

Host Version

• Host Runtime Version: 4.1048.200
• In-Proc CLI:
  • CLI Version: 4.5.0
  • Host Runtime Version: 4.48.100 (includes 4.848.100, 4.648.100)

Changes

Commits

• 21d180f Add go support (preview) (#5093)
• 956e953 Enhanced func cli static gitignore (#5084) (#5085)
• 0422ffb Fix install.js (HttpsProxyAgent, chalk, engines) and remove core-tools devDep...
• ffd4146 Refactor metadata generation script for version handling (#5079)
• b6cac78 Clear release notes after release (#5075)
• c6d63ea Cancel in-progress PR validation runs on new commits (#5052)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: api, dependencies. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[Copilot]

Copilot encountered an error and was unable to review this pull request. You can try again by re-requesting a review.

[github-actions]

⚠️ Deprecation Warning: The deny-licenses option is deprecated for possible removal in the next major release. For more information, see issue 997.

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
npm/azure-functions-core-tools	4.12.0	🟢 6.9	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 24 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed Security-Policy 🟢 10 security policy file detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege Binary-Artifacts 🟢 9 binaries present in source code License 🟢 10 license file detected Fuzzing ⚠️ 0 project is not fuzzed Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches SAST 🟢 9 SAST tool is not run on all commits -- score normalized to 9 Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0
npm/lru-cache	11.5.0	🟢 5	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Code-Review ⚠️ 0 Found 1/29 approved changesets -- score normalized to 0 Packaging ⚠️ -1 packaging workflow not detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Security-Policy 🟢 10 security policy file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0

Scanned Files

• api/package-lock.json