⬆️ Bump anchore/sbom-action from 0.13.4 to 0.14.2

Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from 0.13.4 to 0.14.2. - [Release notes](https://github.com/anchore/sbom-action/releases) - [Commits](anchore/sbom-action@448520c...4d571ad) --- updated-dependencies: - dependency-name: anchore/sbom-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
philips-labs · May 8, 2023 · 4aaf6a1 · 4aaf6a1
1 parent 333da6a
commit 4aaf6a1
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
@@ -86,7 +86,7 @@ jobs:
           cosign-release: 'v2.0.0'
 
       - name: Install Syft
-        uses: anchore/sbom-action/download-syft@448520c4f19577ffce70a8317e619089054687e3 # ratchet:anchore/sbom-action/download-syft@v0.13.4
+        uses: anchore/sbom-action/download-syft@4d571ad1038a9cc29d676154ef265ab8f9027042 # ratchet:anchore/sbom-action/download-syft@v0.14.2
       - name: Login to Container registries
         if: startsWith(github.ref, 'refs/tags/')
         run: |
@@ -159,7 +159,7 @@ jobs:
           cosign-release: 'v2.0.0'
 
       - name: Install Syft
-        uses: anchore/sbom-action/download-syft@448520c4f19577ffce70a8317e619089054687e3 # ratchet:anchore/sbom-action/download-syft@v0.13.4
+        uses: anchore/sbom-action/download-syft@4d571ad1038a9cc29d676154ef265ab8f9027042 # ratchet:anchore/sbom-action/download-syft@v0.14.2
       - name: Login to Container registries
         run: |
           echo "${{ secrets.DOCKER_PASSWORD }}" | docker login -u philipssoftware --password-stdin