From bc46865d7a60469cb917ef5e841e947270936959 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 5 Feb 2026 09:20:42 +0000 Subject: [PATCH] ci(github-actions): bump the github-actions group with 3 updates Bumps the github-actions group with 3 updates: [anchore/scan-action](https://github.com/anchore/scan-action), [anchore/sbom-action](https://github.com/anchore/sbom-action) and [trufflesecurity/trufflehog](https://github.com/trufflesecurity/trufflehog). Updates `anchore/scan-action` from 7.3.1 to 7.3.2 - [Release notes](https://github.com/anchore/scan-action/releases) - [Changelog](https://github.com/anchore/scan-action/blob/main/RELEASE.md) - [Commits](https://github.com/anchore/scan-action/compare/8d2fce09422cd6037e577f4130e9b925e9a37175...7037fa011853d5a11690026fb85feee79f4c946c) Updates `anchore/sbom-action` from 0.22.1 to 0.22.2 - [Release notes](https://github.com/anchore/sbom-action/releases) - [Changelog](https://github.com/anchore/sbom-action/blob/main/RELEASE.md) - [Commits](https://github.com/anchore/sbom-action/compare/deef08a0db64bfad603422135db61477b16cef56...28d71544de8eaf1b958d335707167c5f783590ad) Updates `trufflesecurity/trufflehog` from 3.92.5 to 3.93.0 - [Release notes](https://github.com/trufflesecurity/trufflehog/releases) - [Commits](https://github.com/trufflesecurity/trufflehog/compare/116e7171542d2f1dad8810f00dcfacbe0b809183...7f4e37db2d928c18ddd7ddf0604f8f7d1f5793ec) --- updated-dependencies: - dependency-name: anchore/scan-action dependency-version: 7.3.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: anchore/sbom-action dependency-version: 0.22.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: trufflesecurity/trufflehog dependency-version: 3.93.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/scans.yml | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/scans.yml b/.github/workflows/scans.yml index aeda2ef7..07840d57 100644 --- a/.github/workflows/scans.yml +++ b/.github/workflows/scans.yml @@ -125,7 +125,7 @@ jobs: - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 - id: grype - uses: anchore/scan-action@8d2fce09422cd6037e577f4130e9b925e9a37175 # v7 + uses: anchore/scan-action@7037fa011853d5a11690026fb85feee79f4c946c # v7 with: path: . fail-build: ${{ github.event_name == 'pull_request' }} @@ -155,7 +155,7 @@ jobs: load: true - id: grype - uses: anchore/scan-action@8d2fce09422cd6037e577f4130e9b925e9a37175 # v7 + uses: anchore/scan-action@7037fa011853d5a11690026fb85feee79f4c946c # v7 with: image: ${{ env.IMAGE_ID }} fail-build: ${{ github.event_name == 'pull_request' }} @@ -292,13 +292,13 @@ jobs: steps: - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 - - uses: anchore/sbom-action@deef08a0db64bfad603422135db61477b16cef56 # v0 + - uses: anchore/sbom-action@28d71544de8eaf1b958d335707167c5f783590ad # v0 with: output-file: "${{ github.event.repository.name }}-sbom.spdx.json" dependency-snapshot: true - id: grype - uses: anchore/scan-action@8d2fce09422cd6037e577f4130e9b925e9a37175 # v7 + uses: anchore/scan-action@7037fa011853d5a11690026fb85feee79f4c946c # v7 with: sbom: "${{ github.event.repository.name }}-sbom.spdx.json" fail-build: ${{ github.event_name == 'pull_request' }} @@ -390,7 +390,7 @@ jobs: with: fetch-depth: (${{ github.event.pull_request.commits || 2 }} + 1) - - uses: trufflesecurity/trufflehog@116e7171542d2f1dad8810f00dcfacbe0b809183 # v3 + - uses: trufflesecurity/trufflehog@7f4e37db2d928c18ddd7ddf0604f8f7d1f5793ec # v3 with: extra_args: --results=verified,unknown