Bad request - stcarolas/setup-maven@d6af6abeda15e98926a57b5aa970a96bb37f97d1, tj-actions/changed-files@bab30c2299617f6615ec02a68b9a40d10bd21366, and endbug/add-and-commit@a94899bca583c204427a224a7af87c02f9b325d5 are not allowed to be used in chains-project/maven-lockfile. Actions in this workflow must be: within a repository owned by chains-project, created by GitHub, verified in the GitHub Marketplace, or matching the following: stefanzweifel/git-auto-commit-action@*, monperrus/pyproject-bump-pypi@main.