From b4f204b9e05e8752373d2872105872032f71f56f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 3 Nov 2022 20:19:53 +0100 Subject: [PATCH] build(deps): bump anchore/sbom-action from 0.12.0 to 0.13.0 (#119) Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from 0.12.0 to 0.13.0. - [Release notes](https://github.com/anchore/sbom-action/releases) - [Commits](https://github.com/anchore/sbom-action/compare/b5042e9d19d8b32849779bfe17673ff84aec702d...b7e8507c6a3c89b7099a0198366d862c8f3ad8f1) --- updated-dependencies: - dependency-name: anchore/sbom-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/main.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml index 04a5fde..ababd4a 100644 --- a/.github/workflows/main.yml +++ b/.github/workflows/main.yml @@ -73,7 +73,7 @@ jobs: with: cosign-release: ${{ env.COSIGN_VERSION }} - name: Install Syft - uses: anchore/sbom-action/download-syft@b5042e9d19d8b32849779bfe17673ff84aec702d # ratchet:anchore/sbom-action/download-syft@v0.12.0 + uses: anchore/sbom-action/download-syft@b7e8507c6a3c89b7099a0198366d862c8f3ad8f1 # ratchet:anchore/sbom-action/download-syft@v0.13.0 with: syft-version: ${{ env.SYFT_VERSION }} - name: Put key on file @@ -136,7 +136,7 @@ jobs: with: cosign-release: ${{ env.COSIGN_VERSION }} - name: Install Syft - uses: anchore/sbom-action/download-syft@b5042e9d19d8b32849779bfe17673ff84aec702d # ratchet:anchore/sbom-action/download-syft@v0.12.0 + uses: anchore/sbom-action/download-syft@b7e8507c6a3c89b7099a0198366d862c8f3ad8f1 # ratchet:anchore/sbom-action/download-syft@v0.13.0 with: syft-version: ${{ env.SYFT_VERSION }} - name: Login to Docker