Skip to content

Commit f7ca416

Browse files
renovate[bot]renovate[bot]
authored
chore(deps): update actions/attest-sbom action to v2.4.0 (#496)
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [actions/attest-sbom](https://redirect.github.com/actions/attest-sbom) | action | minor | `v2.2.0` -> `v2.4.0` | --- ### Release Notes <details> <summary>actions/attest-sbom (actions/attest-sbom)</summary> ### [`v2.4.0`](https://redirect.github.com/actions/attest-sbom/releases/tag/v2.4.0) [Compare Source](https://redirect.github.com/actions/attest-sbom/compare/v2.2.0...v2.4.0) #### What's Changed - Bump actions/attest from 2.2.1 to 2.3.0 in the actions-minor group by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/actions/attest-sbom/pull/169](https://redirect.github.com/actions/attest-sbom/pull/169) - Bump undici from 5.28.5 to 5.29.0 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/actions/attest-sbom/pull/172](https://redirect.github.com/actions/attest-sbom/pull/172) - Bump actions/attest from 2.3.0 to 2.4.0 by [@&#8203;bdehamer](https://redirect.github.com/bdehamer) in [https://github.com/actions/attest-sbom/pull/178](https://redirect.github.com/actions/attest-sbom/pull/178) - Includes support for the new well-known summary file which will accumulate paths to all attestations generated in a given workflow run **Full Changelog**: actions/attest-sbom@v2.2.0...v2.4.0 </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/open-feature/dotnet-sdk). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC42Mi4xIiwidXBkYXRlZEluVmVyIjoiNDAuNjIuMSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsicmVub3ZhdGUiXX0=--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
1 parent 909c51d commit f7ca416

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

.github/actions/sbom-generator/action.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -35,7 +35,7 @@ runs:
3535
gh release upload ${{ inputs.release-tag }} ./artifacts/sboms/${{ inputs.project-name }}.bom.json
3636
3737
- name: Attest package
38-
uses: actions/attest-sbom@115c3be05ff3974bcbd596578934b3f9ce39bf68 # v2.2.0
38+
uses: actions/attest-sbom@bd218ad0dbcb3e146bd073d1d9c6d78e08aa8a0b # v2.4.0
3939
with:
4040
subject-path: src/**/${{ inputs.project-name }}.*.nupkg
4141
sbom-path: ./artifacts/sboms/${{ inputs.project-name }}.bom.json

0 commit comments

Comments
 (0)