Update anchore/scan-action digest to 869c549 #146

	name: CI Build
	on:
	push:
	paths-ignore:
	- '*/.md'
	- '*/.yaml'
	- '.github/**'
	- '.devcontainer/**'
	- '*/.env'
	branches:
	- main
	pull_request:
	branches:
	- main
	jobs:
	docker:
	runs-on: ubuntu-latest
	strategy:
	fail-fast: true
	matrix:
	language: [ 'python' ]
	steps:
	- uses: actions/checkout@v3

	- name: Set up QEMU
	uses: docker/setup-qemu-action@v2
	with:
	platforms: arm64,amd64,arm

	- name: Set up Docker Buildx
	uses: docker/setup-buildx-action@v2
	with:
	install: true

	- name: Docker meta
	id: meta
	uses: docker/metadata-action@v4
	with:
	images: antaresinc/magnet2torrent
	tags: \|
	type=ref,event=branch
	type=semver,pattern={{version}}
	type=semver,pattern={{major}}.{{minor}}
	type=sha,format=long
	type=ref,event=tag
	flavor: \|
	latest=auto

	- name: Login to DockerHub
	uses: docker/login-action@v2
	with:
	username: ${{ secrets.DOCKERHUB_USERNAME }}
	password: ${{ secrets.DOCKERHUB_TOKEN }}

	- name: Build and push
	uses: docker/build-push-action@v3
	with:
	context: .
	platforms: linux/amd64,linux/arm64
	push: ${{ github.event_name != 'pull_request' }}
	tags: ${{ steps.meta.outputs.tags }}
	labels: ${{ steps.meta.outputs.labels }}
	cache-from: type=gha
	cache-to: type=gha,mode=max

	- name: Run the Anchore scan action itself with GitHub Advanced Security code scanning integration enabled
	uses: anchore/scan-action@5384d4fc3f3be62838337b71abbe2970cf3d8282
	with:
	path: "."
	acs-report-enable: true
	fail-build: true
	severity-cutoff: critical
	- name: Upload Anchore Scan Report
	uses: github/codeql-action/upload-sarif@v3
	with:
	sarif_file: results.sarif

Provide feedback