chore(deps): bump github.com/anchore/syft from 1.14.2 to 1.15.0

[dependabot]

Bumps github.com/anchore/syft from 1.14.2 to 1.15.0.

Release notes

Sourced from github.com/anchore/syft's releases.

v1.15.0

Added Features

• Merge config files hierarchically and add support for config profiles [#3337 @​kzantow]
• Enable cargo-auditable-binary-cataloger for files/directories [#3376 @​ariel-miculas]
• Improve mariadb binary classifer to detect older versions [#3052]
• Look for dpkg status file at additional globs [#2692 #3373 @​njv299]
• Emit relationships for Java dependencies [#3189 #3363 @​kzantow]

(Full Changelog)

Commits

• 55cc187 chore(deps): update stereoscope to bcc40c6817524718277256d6b774ce643f98640a (...
• 367c699 chore(deps): bump actions/setup-go from 5.0.2 to 5.1.0 (#3384)
• 46445ff chore(deps): bump github.com/charmbracelet/bubbletea from 1.1.1 to 1.1.2 (#3385)
• 5faa6d3 chore(deps): update tools to latest versions (#3383)
• c7c0366 chore(deps): update CPE dictionary index (#3387)
• a0c62da chore(deps): bump actions/checkout from 4.2.1 to 4.2.2 (#3380)
• 759b898 feat: multi-level configuration and profiles (#3337)
• a00533c feat: Java dependency graph information (#3363)
• b505317 Expanded dpkg cataloger globs (#3373)
• 06d300e Enable cargo-auditable-binary-cataloger for files/directories (#3376)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[netlify]

✅ Deploy Preview for zarf-docs ready!

Name	Link
🔨 Latest commit	408dd2c
🔍 Latest deploy log	https://app.netlify.com/sites/zarf-docs/deploys/6724fbaf5ca7660008b367f7
😎 Deploy Preview	https://deploy-preview-3156--zarf-docs.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify site configuration.

[phillebaba]

@dependabot rebase

[dependabot]

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅