Please handle Dependabot PR's to remove security vulnerabilities

We would like to use this action in our pipelines but we are not allowed to do this because of these security vulnerabilities reported by Dependabot. Please can you address them?

https://github.com/browserstack/github-actions/issues?q=is%3Apr+is%3Aopen+author%3Aapp%2Fdependabot