chore(deps): bump anchore/sbom-action from 0.20.11 to 0.22.0#72
chore(deps): bump anchore/sbom-action from 0.20.11 to 0.22.0#72dependabot[bot] wants to merge 1 commit intomainfrom
Conversation
Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from 0.20.11 to 0.22.0. - [Release notes](https://github.com/anchore/sbom-action/releases) - [Changelog](https://github.com/anchore/sbom-action/blob/main/RELEASE.md) - [Commits](anchore/sbom-action@v0.20.11...v0.22.0) --- updated-dependencies: - dependency-name: anchore/sbom-action dependency-version: 0.22.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
|
Important Review skippedBot user detected. To trigger a single review, invoke the You can disable this status message by setting the Comment |
|
OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting If you change your mind, just re-open this PR and I'll resolve any conflicts on it. |
dependabot
bot
deleted the
dependabot/github_actions/anchore/sbom-action-0.22.0
branch
1 participant
Bumps anchore/sbom-action from 0.20.11 to 0.22.0.
Release notes
Sourced from anchore/sbom-action's releases.
Commits
62ad528chore: update release-drafter, dependencies (#571)2657179chore(deps-dev): bump the dev-dependencies group with 19 updates (#566)61140b1chore(deps): bump npm-check-updates from 17.1.3 to 19.3.1 (#567)f99cf3eci: enable dependabot with groups (#565)28b3d8fChore better zizmor (#564)3363a57chore(deps): update Syft to v1.40.1 (#563)0b82b0bchore(deps): update Syft to v1.40.0 (#562)a930d0achore(deps): update Syft to v1.39.0 (#561)e4b2532chore(deps): bump@octokit/request-error,@octokit/coreand@octokit/webhooks...481b254chore(deps): bump peter-evans/create-pull-request from 7.0.11 to 8.0.0 (#558)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)