From 3c4b73d671215691f20cbab914ace788fd88a8ca Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 5 Aug 2024 08:36:07 +0000 Subject: [PATCH 1/2] chore(deps): Bump actions/attest-build-provenance Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance) from 1.3.3 to 1.4.0. - [Release notes](https://github.com/actions/attest-build-provenance/releases) - [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md) - [Commits](https://github.com/actions/attest-build-provenance/compare/5e9cb68e95676991667494a6a4e59b8a2f13e1d0...210c1913531870065f03ce1f9440dd87bc0938cd) --- updated-dependencies: - dependency-name: actions/attest-build-provenance dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/actions/build-docker-image/action.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/actions/build-docker-image/action.yml b/.github/actions/build-docker-image/action.yml index 1dc0fe91..7f234187 100644 --- a/.github/actions/build-docker-image/action.yml +++ b/.github/actions/build-docker-image/action.yml @@ -102,7 +102,7 @@ runs: if: inputs.push == 'true' - name: Attest provenance - uses: actions/attest-build-provenance@5e9cb68e95676991667494a6a4e59b8a2f13e1d0 # v1.3.3 + uses: actions/attest-build-provenance@210c1913531870065f03ce1f9440dd87bc0938cd # v1.4.0 with: subject-name: ${{ steps.imagename.outputs.image_name }} subject-digest: ${{ steps.push.outputs.digest }} From 1780e59e22d5288f2b59b4b17284aee6206dea26 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 5 Aug 2024 08:36:09 +0000 Subject: [PATCH 2/2] chore(deps): Bump actions/attest-sbom Bumps [actions/attest-sbom](https://github.com/actions/attest-sbom) from 1.3.3 to 1.4.0. - [Release notes](https://github.com/actions/attest-sbom/releases) - [Changelog](https://github.com/actions/attest-sbom/blob/main/RELEASE.md) - [Commits](https://github.com/actions/attest-sbom/compare/6d7733f629ce1368bd053e269afa8041a98a2b98...f19ab44411e02574a74181cec8eb584319d0f779) --- updated-dependencies: - dependency-name: actions/attest-sbom dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/actions/build-docker-image/action.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/actions/build-docker-image/action.yml b/.github/actions/build-docker-image/action.yml index 1dc0fe91..a574308c 100644 --- a/.github/actions/build-docker-image/action.yml +++ b/.github/actions/build-docker-image/action.yml @@ -93,7 +93,7 @@ runs: if: inputs.push == 'true' - name: Attest SBOM - uses: actions/attest-sbom@6d7733f629ce1368bd053e269afa8041a98a2b98 # v1.3.3 + uses: actions/attest-sbom@f19ab44411e02574a74181cec8eb584319d0f779 # v1.4.0 with: subject-name: ${{ steps.imagename.outputs.image_name }} subject-digest: ${{ steps.push.outputs.digest }}