Skip to content

Commit d287a67

Browse files
dependabot[bot]dependabot[bot]
authored
Upgrade: [dependabot] - bump NHSDigital/eps-action-sbom from 1.0.7 to 1.0.16 (#35)
Bumps [NHSDigital/eps-action-sbom](https://github.com/nhsdigital/eps-action-sbom) from 1.0.7 to 1.0.16. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/nhsdigital/eps-action-sbom/releases">NHSDigital/eps-action-sbom's releases</a>.</em></p> <blockquote> <h2>v1.0.16</h2> <h2><a href="https://github.com/NHSDigital/eps-action-sbom/compare/v1.0.15...v1.0.16">1.0.16</a> (2025-11-07)</h2> <h3>Upgrade</h3> <ul> <li>[dependabot] - bump NHSDigital/eps-workflow-dependabot/.github/workflows/dependabot-auto-approve-and-merge.yml from 1.0.16 to 1.0.17 (<a href="https://redirect.github.com/nhsdigital/eps-action-sbom/issues/70">#70</a>) (<a href="https://github.com/NHSDigital/eps-action-sbom/commit/ae6916d542c092ec1636f9a0ba14464ba25a97d1">ae6916d</a>)</li> </ul> <h2>Info</h2> <p><a href="https://github.com/NHSDigital/eps-action-sbom/compare/a988c450af1f...ae6916d542c0">See code diff</a> <a href="https://github.com/NHSDigital/eps-action-sbom/actions/runs/19159288839">Release workflow run</a></p> <p>It was initialized by <a href="https://github.com/apps/eps-autoapprove-dependabot">eps-autoapprove-dependabot[bot]</a></p> <h2>v1.0.15</h2> <h2><a href="https://github.com/NHSDigital/eps-action-sbom/compare/v1.0.14...v1.0.15">1.0.15</a> (2025-11-07)</h2> <h3>Upgrade</h3> <ul> <li>[dependabot] - bump NHSDigital/eps-workflow-semantic-release/.github/workflows/pr_title_check.yml from 2.0.19 to 2.0.20 (<a href="https://redirect.github.com/nhsdigital/eps-action-sbom/issues/69">#69</a>) (<a href="https://github.com/NHSDigital/eps-action-sbom/commit/a988c450af1f13215b4363ad1e7e5aaf74146988">a988c45</a>)</li> <li>[dependabot] - bump NHSDigital/eps-workflow-semantic-release/.github/workflows/tag-release.yml from 2.0.19 to 2.0.20 (<a href="https://redirect.github.com/nhsdigital/eps-action-sbom/issues/68">#68</a>) (<a href="https://github.com/NHSDigital/eps-action-sbom/commit/3243228cae149cb24e6490ee27955442e1218cbd">3243228</a>)</li> </ul> <h2>Info</h2> <p><a href="https://github.com/NHSDigital/eps-action-sbom/compare/3243228cae14...a988c450af1f">See code diff</a> <a href="https://github.com/NHSDigital/eps-action-sbom/actions/runs/19159199898">Release workflow run</a></p> <p>It was initialized by <a href="https://github.com/apps/eps-autoapprove-dependabot">eps-autoapprove-dependabot[bot]</a></p> <h2>v1.0.14</h2> <h2><a href="https://github.com/NHSDigital/eps-action-sbom/compare/v1.0.13...v1.0.14">1.0.14</a> (2025-11-06)</h2> <h3>Upgrade</h3> <ul> <li>[dependabot] - bump NHSDigital/eps-workflow-dependabot/.github/workflows/dependabot-auto-approve-and-merge.yml from 1.0.15 to 1.0.16 (<a href="https://redirect.github.com/nhsdigital/eps-action-sbom/issues/65">#65</a>) (<a href="https://github.com/NHSDigital/eps-action-sbom/commit/d87bfd51b9bc844f6b08dc936f8cd453b3618a9b">d87bfd5</a>)</li> <li>[dependabot] - bump NHSDigital/eps-workflow-semantic-release/.github/workflows/pr_title_check.yml from 2.0.18 to 2.0.19 (<a href="https://redirect.github.com/nhsdigital/eps-action-sbom/issues/66">#66</a>) (<a href="https://github.com/NHSDigital/eps-action-sbom/commit/d06bd7f96b79d313708cb15f30c68d37e5a85cfb">d06bd7f</a>)</li> <li>[dependabot] - bump NHSDigital/eps-workflow-semantic-release/.github/workflows/tag-release.yml from 2.0.18 to 2.0.19 (<a href="https://redirect.github.com/nhsdigital/eps-action-sbom/issues/67">#67</a>) (<a href="https://github.com/NHSDigital/eps-action-sbom/commit/b4109fa1af8e6bd9757a73244b6f4ba15ef37e98">b4109fa</a>)</li> </ul> <h2>Info</h2> <p><a href="https://github.com/NHSDigital/eps-action-sbom/compare/b4109fa1af8e...d87bfd51b9bc">See code diff</a></p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/NHSDigital/eps-action-sbom/commit/ae6916d542c092ec1636f9a0ba14464ba25a97d1"><code>ae6916d</code></a> Upgrade: [dependabot] - bump NHSDigital/eps-workflow-dependabot/.github/workf...</li> <li><a href="https://github.com/NHSDigital/eps-action-sbom/commit/a988c450af1f13215b4363ad1e7e5aaf74146988"><code>a988c45</code></a> Upgrade: [dependabot] - bump NHSDigital/eps-workflow-semantic-release/.github...</li> <li><a href="https://github.com/NHSDigital/eps-action-sbom/commit/3243228cae149cb24e6490ee27955442e1218cbd"><code>3243228</code></a> Upgrade: [dependabot] - bump NHSDigital/eps-workflow-semantic-release/.github...</li> <li><a href="https://github.com/NHSDigital/eps-action-sbom/commit/d87bfd51b9bc844f6b08dc936f8cd453b3618a9b"><code>d87bfd5</code></a> Upgrade: [dependabot] - bump NHSDigital/eps-workflow-dependabot/.github/workf...</li> <li><a href="https://github.com/NHSDigital/eps-action-sbom/commit/b4109fa1af8e6bd9757a73244b6f4ba15ef37e98"><code>b4109fa</code></a> Upgrade: [dependabot] - bump NHSDigital/eps-workflow-semantic-release/.github...</li> <li><a href="https://github.com/NHSDigital/eps-action-sbom/commit/d06bd7f96b79d313708cb15f30c68d37e5a85cfb"><code>d06bd7f</code></a> Upgrade: [dependabot] - bump NHSDigital/eps-workflow-semantic-release/.github...</li> <li><a href="https://github.com/NHSDigital/eps-action-sbom/commit/5f3fb832030502d707f662bfb0e6d215ea690b07"><code>5f3fb83</code></a> Upgrade: [dependabot] - bump NHSDigital/eps-workflow-semantic-release from 2....</li> <li><a href="https://github.com/NHSDigital/eps-action-sbom/commit/f10b5b177c1b999994f75dca1a5dd4e9918dc570"><code>f10b5b1</code></a> Upgrade: [dependabot] - bump NHSDigital/eps-workflow-dependabot from 1.0.14 t...</li> <li><a href="https://github.com/NHSDigital/eps-action-sbom/commit/28213ce45d39698682d4afe65eebaa9f6917dd6f"><code>28213ce</code></a> Upgrade: [dependabot] - bump NHSDigital/eps-workflow-semantic-release from 2....</li> <li><a href="https://github.com/NHSDigital/eps-action-sbom/commit/ad715d8b92b08bf36d9b2f54245f97f38fdb446a"><code>ad715d8</code></a> Upgrade: [dependabot] - bump NHSDigital/eps-workflow-dependabot from 1.0.13 t...</li> <li>Additional commits viewable in <a href="https://github.com/nhsdigital/eps-action-sbom/compare/a9649f5d8d4eb4147f1d2a85118f4310fb4810bd...ae6916d542c092ec1636f9a0ba14464ba25a97d1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=NHSDigital/eps-action-sbom&package-manager=github_actions&previous-version=1.0.7&new-version=1.0.16)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
1 parent 95217e3 commit d287a67

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

.github/workflows/quality-checks.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -349,7 +349,7 @@ jobs:
349349
path: cfn_guard_output
350350

351351
- name: Generate and check SBOMs
352-
uses: NHSDigital/eps-action-sbom@a9649f5d8d4eb4147f1d2a85118f4310fb4810bd
352+
uses: NHSDigital/eps-action-sbom@ae6916d542c092ec1636f9a0ba14464ba25a97d1
353353

354354
- name: "check is SONAR_TOKEN exists"
355355
env:

0 commit comments

Comments
 (0)