Merge pull request #26 from advanced-security/dependabot/github_actions/main/production-dependencies-d35956d5db

GeekMasher · web-flow · commit dd186ca10211 · 2024-06-13T14:04:44.000+01:00
deps: bump the production-dependencies group with 2 updates
diff --git a/.github/workflows/container.yml b/.github/workflows/container.yml
@@ -89,7 +89,7 @@ jobs:
             type=semver,pattern=v{{major}},value=${{ inputs.version }}
 
       - name: Build Docker image
-        uses: docker/build-push-action@v5.3.0
+        uses: docker/build-push-action@v5.4.0
         id: build
         with:
           file: "${{ inputs.docker-file }}"
@@ -102,7 +102,7 @@ jobs:
 
       # Upload Software Bill of Materials (SBOM) to GitHub
       - name: Upload SBOM
-        uses: advanced-security/spdx-dependency-submission-action@v0.0.1
+        uses: advanced-security/spdx-dependency-submission-action@v0.1.0
         if: ${{ inputs.sbom == 'true' }}
         with:
           filePath: '.'
