From 53fe27a64830e5006a9f4aa9091bb4d348e8bdb1 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 5 Dec 2024 09:49:23 +0000 Subject: [PATCH] :dependabot: github-actions(deps): Bump actions/attest-sbom from 1.4.1 to 2.0.0 (#53) --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 9afe7bf..9c75c00 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -65,7 +65,7 @@ jobs: push-to-registry: true - name: Attest SBOM - uses: actions/attest-sbom@5026d3663739160db546203eeaffa6aa1c51a4d6 # v1.4.1 + uses: actions/attest-sbom@1455967b1b6415d3df9fac31a87500523f7b455c # v2.0.0 id: attest_sbom with: subject-name: ghcr.io/${{ github.repository }}