From 50921f35c4ba113b54a0d67d8698e183cd8b21eb Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sun, 16 Jun 2024 22:34:57 +0200 Subject: [PATCH] chore(deps): bump adfinis/container-scanning-action from 0.2.7 to 0.2.8 (#260) Bumps [adfinis/container-scanning-action](https://github.com/adfinis/container-scanning-action) from 0.2.7 to 0.2.8. - [Release notes](https://github.com/adfinis/container-scanning-action/releases) - [Commits](https://github.com/adfinis/container-scanning-action/compare/v0.2.7...v0.2.8) --- updated-dependencies: - dependency-name: adfinis/container-scanning-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/release.yaml | 2 +- .github/workflows/schedule.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 7e9a8acc7..ff71eadac 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -110,7 +110,7 @@ jobs: ${{ steps.meta.outputs.labels }} - name: Sign ${{ matrix.config.name }} image and attach SBOM attestation - uses: adfinis/container-scanning-action@v0.2.7 + uses: adfinis/container-scanning-action@v0.2.8 with: image-ref: ghcr.io/${{ github.repository }}/${{ matrix.config.name }} token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/schedule.yaml b/.github/workflows/schedule.yaml index 4b2e12d06..cc4356317 100644 --- a/.github/workflows/schedule.yaml +++ b/.github/workflows/schedule.yaml @@ -28,7 +28,7 @@ jobs: # needed for `cosign attest` id-token: write steps: - - uses: adfinis/container-scanning-action@v0.2.7 + - uses: adfinis/container-scanning-action@v0.2.8 with: image-ref: ghcr.io/${{ github.repository }}/${{ matrix.image }} attest: true