From 4aaf6a12b6047b8d81af42eab6f691a16be21bea Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 May 2023 05:57:52 +0000
Subject: [PATCH] :arrow_up: Bump anchore/sbom-action from 0.13.4 to 0.14.2

Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from 0.13.4 to 0.14.2.
- [Release notes](https://github.com/anchore/sbom-action/releases)
- [Commits](https://github.com/anchore/sbom-action/compare/448520c4f19577ffce70a8317e619089054687e3...4d571ad1038a9cc29d676154ef265ab8f9027042)

---
updated-dependencies:
- dependency-name: anchore/sbom-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/ci.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 15f51cb2..8e4d2def 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -86,7 +86,7 @@ jobs:
           cosign-release: 'v2.0.0'
 
       - name: Install Syft
-        uses: anchore/sbom-action/download-syft@448520c4f19577ffce70a8317e619089054687e3 # ratchet:anchore/sbom-action/download-syft@v0.13.4
+        uses: anchore/sbom-action/download-syft@4d571ad1038a9cc29d676154ef265ab8f9027042 # ratchet:anchore/sbom-action/download-syft@v0.14.2
       - name: Login to Container registries
         if: startsWith(github.ref, 'refs/tags/')
         run: |
@@ -159,7 +159,7 @@ jobs:
           cosign-release: 'v2.0.0'
 
       - name: Install Syft
-        uses: anchore/sbom-action/download-syft@448520c4f19577ffce70a8317e619089054687e3 # ratchet:anchore/sbom-action/download-syft@v0.13.4
+        uses: anchore/sbom-action/download-syft@4d571ad1038a9cc29d676154ef265ab8f9027042 # ratchet:anchore/sbom-action/download-syft@v0.14.2
       - name: Login to Container registries
         run: |
           echo "${{ secrets.DOCKER_PASSWORD }}" | docker login -u philipssoftware --password-stdin