From 195a74464348f806014d0fc1e62ef144ef6f45d3 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 4 Nov 2024 05:44:35 +0000 Subject: [PATCH] :arrow_up: Bump anchore/sbom-action from 0.17.5 to 0.17.6 Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from 0.17.5 to 0.17.6. - [Release notes](https://github.com/anchore/sbom-action/releases) - [Changelog](https://github.com/anchore/sbom-action/blob/main/RELEASE.md) - [Commits](https://github.com/anchore/sbom-action/compare/1ca97d9028b51809cf6d3c934c3e160716e1b605...251a468eed47e5082b105c3ba6ee500c0e65a764) --- updated-dependencies: - dependency-name: anchore/sbom-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- .github/workflows/ci.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml index 646383ee..f55dda35 100644 --- a/.github/workflows/ci.yaml +++ b/.github/workflows/ci.yaml @@ -92,7 +92,7 @@ jobs: cosign-release: 'v2.2.4' - name: Install Syft - uses: anchore/sbom-action/download-syft@1ca97d9028b51809cf6d3c934c3e160716e1b605 # ratchet:anchore/sbom-action/download-syft@v0.17.5 + uses: anchore/sbom-action/download-syft@251a468eed47e5082b105c3ba6ee500c0e65a764 # ratchet:anchore/sbom-action/download-syft@v0.17.6 - name: Login to Container registries if: startsWith(github.ref, 'refs/tags/') run: | @@ -158,7 +158,7 @@ jobs: cosign-release: 'v2.2.4' - name: Install Syft - uses: anchore/sbom-action/download-syft@1ca97d9028b51809cf6d3c934c3e160716e1b605 # ratchet:anchore/sbom-action/download-syft@v0.17.5 + uses: anchore/sbom-action/download-syft@251a468eed47e5082b105c3ba6ee500c0e65a764 # ratchet:anchore/sbom-action/download-syft@v0.17.6 - name: Login to Container registries run: | echo "${{ secrets.DOCKER_PASSWORD }}" | docker login -u philipssoftware --password-stdin