From 49779889510fd201581edf2dccef692143597388 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 26 Aug 2024 04:38:06 +0000 Subject: [PATCH] :arrow_up: Bump anchore/sbom-action from 0.16.0 to 0.17.2 Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from 0.16.0 to 0.17.2. - [Release notes](https://github.com/anchore/sbom-action/releases) - [Commits](https://github.com/anchore/sbom-action/compare/v0.16.0...v0.17.2) --- updated-dependencies: - dependency-name: anchore/sbom-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/ci.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml index 0aa99f3..8920c71 100644 --- a/.github/workflows/ci.yaml +++ b/.github/workflows/ci.yaml @@ -87,7 +87,7 @@ jobs: cosign-release: 'v2.4.0' - name: Install Syft - uses: anchore/sbom-action/download-syft@v0.16.0 + uses: anchore/sbom-action/download-syft@v0.17.2 - name: Login to ghcr.io uses: docker/login-action@v3.2.0 @@ -150,7 +150,7 @@ jobs: cosign-release: 'v2.4.0' - name: Install Syft - uses: anchore/sbom-action/download-syft@v0.16.0 + uses: anchore/sbom-action/download-syft@v0.17.2 - name: Login to ghcr.io uses: docker/login-action@v3.2.0