Merge pull request #30 from advanced-security/dependabot/github_actions/main/production-dependencies-c6122d09f6

GeekMasher · web-flow · commit 385a7e700498 · 2024-07-04T14:20:40.000+01:00
deps: bump the production-dependencies group across 1 directory with 2 updates
diff --git a/.github/workflows/container.yml b/.github/workflows/container.yml
@@ -89,7 +89,7 @@ jobs:
             type=semver,pattern=v{{major}},value=${{ inputs.version }}
 
       - name: Build Docker image
-        uses: docker/build-push-action@v5.4.0
+        uses: docker/build-push-action@v6.2.0
         id: build
         with:
           file: "${{ inputs.docker-file }}"
@@ -102,7 +102,7 @@ jobs:
 
       # Upload Software Bill of Materials (SBOM) to GitHub
       - name: Upload SBOM
-        uses: advanced-security/spdx-dependency-submission-action@v0.1.0
+        uses: advanced-security/spdx-dependency-submission-action@v0.1.1
         if: ${{ inputs.sbom == 'true' }}
         with:
           filePath: '.'
