[8.2] Bump GitHub Actions to Node 24 compatible versions [MOD-15112]

[dor-forer]

Describe the changes in the pull request

Manual backport of #947 and #953 to 8.2. Replaces #952 (which carried the broken file: input that #953 fixed). Both upstream changes are squashed into this PR as two commits.

Migrates JavaScript-based GitHub Actions to versions running on the Node 24 runtime, ahead of the June 2, 2026 Node 20 deprecation, and uses the correct files: input for codecov/codecov-action@v6.

Version bumps:

Action	Old	New
actions/checkout	v4	v6
actions/setup-python	v5	v6
actions/upload-artifact	v4	v7
aws-actions/configure-aws-credentials	v4	v6
machulav/ec2-github-runner	v2.4.2	v2.6.1
codecov/codecov-action	v4	v6 (input renamed file → files)
github/codeql-action/*	v3	v4
korthout/backport-action	v3	v4
release-drafter/release-drafter	v6	v7
slackapi/slack-github-action	v1	v3 (input-based webhook config)

Conflict resolution: took the v3 incoming-webhook variant of the Slack notify step from #947 (replaces the SLACK_WEBHOOK_URL env var with webhook / webhook-type inputs and adds repository to the payload).

Which issues this PR fixes

1. MOD-15112

Main objects this PR modified

1. .github/workflows/arm.yml
2. .github/workflows/benchmark-runner.yml
3. .github/workflows/codeql-analysis.yml
4. .github/workflows/coverage.yml
5. .github/workflows/event-nightly.yml
6. .github/workflows/event-pull_request.yml
7. .github/workflows/release-drafter.yml
8. .github/workflows/task-backport_pr.yml
9. .github/workflows/task-unit-test.yml

Mark if applicable

• This PR introduces API changes
• This PR introduces serialization changes

---

Note

Medium Risk
CI/workflow behavior may change due to major-version bumps of multiple GitHub Actions (including AWS EC2 runner management, CodeQL, Codecov, and Slack notifications), which could break builds or notifications if inputs/outputs differ.

Overview
Modernizes the CI workflows by bumping multiple GitHub Actions to newer major versions (e.g., actions/checkout, setup-python, upload-artifact, configure-aws-credentials, machulav/ec2-github-runner, codeql-action, release-drafter, backport-action).

Fixes/aligns action configuration changes: switches Codecov upload to the files: input for codecov/codecov-action@v6, and updates nightly Slack failure notifications to slackapi/slack-github-action@v3 using input-based incoming-webhook configuration (including an expanded payload).

^{Reviewed by Cursor Bugbot for commit c3c3dad. Bugbot is set up for automated code reviews on this repo. Configure here.}

[jit-ci]

🛡️ Jit Security Scan Results

✅ No security findings were detected in this PR

---

^{Security scan by Jit}

[cursor]

Cursor Bugbot has reviewed your changes and found 1 potential issue.

^{❌ Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, have a team admin enable autofix in the Cursor dashboard.}

^{Reviewed by Cursor Bugbot for commit d43e1f8. Configure here.}

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 96.98%. Comparing base (6f4f966) to head (c3c3dad).

Additional details and impacted files

@@           Coverage Diff           @@
##              8.2     #963   +/-   ##
=======================================
  Coverage   96.98%   96.98%           
=======================================
  Files         126      126           
  Lines        7371     7371           
=======================================
  Hits         7149     7149           
  Misses        222      222           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.