From 66a4f53bf75c2fa33760fd031fbed98efcd29589 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 19 Apr 2023 10:16:02 +0200 Subject: [PATCH] build(deps): bump anchore/sbom-action from 0.13.4 to 0.14.1 (#177) Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from 0.13.4 to 0.14.1. - [Release notes](https://github.com/anchore/sbom-action/releases) - [Commits](https://github.com/anchore/sbom-action/compare/448520c4f19577ffce70a8317e619089054687e3...422cb34a0f8b599678c41b21163ea6088edb2624) --- updated-dependencies: - dependency-name: anchore/sbom-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/main.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml index 6075c01..c432a11 100644 --- a/.github/workflows/main.yml +++ b/.github/workflows/main.yml @@ -72,7 +72,7 @@ jobs: with: cosign-release: ${{ env.COSIGN_VERSION }} - name: Install Syft - uses: anchore/sbom-action/download-syft@448520c4f19577ffce70a8317e619089054687e3 # ratchet:anchore/sbom-action/download-syft@v0.13.4 + uses: anchore/sbom-action/download-syft@422cb34a0f8b599678c41b21163ea6088edb2624 # ratchet:anchore/sbom-action/download-syft@v0.14.1 with: syft-version: ${{ env.SYFT_VERSION }} - name: Put key on file @@ -137,7 +137,7 @@ jobs: with: cosign-release: ${{ env.COSIGN_VERSION }} - name: Install Syft - uses: anchore/sbom-action/download-syft@448520c4f19577ffce70a8317e619089054687e3 # ratchet:anchore/sbom-action/download-syft@v0.13.4 + uses: anchore/sbom-action/download-syft@422cb34a0f8b599678c41b21163ea6088edb2624 # ratchet:anchore/sbom-action/download-syft@v0.14.1 with: syft-version: ${{ env.SYFT_VERSION }} - name: Login to Docker