Bump docker/scout-action from 1.4.1 to 1.5.0

Bumps [docker/scout-action](https://github.com/docker/scout-action) from 1.4.1 to 1.5.0. - [Release notes](https://github.com/docker/scout-action/releases) - [Commits](docker/scout-action@4a5494e...67eb1af) --- updated-dependencies: - dependency-name: docker/scout-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
mauwii · Feb 16, 2024 · a3d2dfd · a3d2dfd
1 parent e274da5
commit a3d2dfd
Showing 1 changed file with 3 additions and 3 deletions.
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -156,7 +156,7 @@ jobs:
 
       # Docker-Scout - Create SBOM
       - name: Create SBOM
-        uses: docker/scout-action@4a5494eb7c2b3d712b805ee65ad57a0371d50874
+        uses: docker/scout-action@67eb1afe777307506aaecb9acd9a0e0389cb99ae
         id: docker-scout-sbom
         continue-on-error: true
         if: env.CONTAINER_PUSH == 'true' && vars.DOCKERHUB_USERNAME != ''
@@ -168,7 +168,7 @@ jobs:
 
       # vulnerability scan the image for main branch and upload the results as a SARIF file
       - name: Analyze for critical and high CVEs
-        uses: docker/scout-action@4a5494eb7c2b3d712b805ee65ad57a0371d50874
+        uses: docker/scout-action@67eb1afe777307506aaecb9acd9a0e0389cb99ae
         id: docker-scout-cves
         continue-on-error: true
         if: env.CONTAINER_PUSH == 'true'
@@ -187,7 +187,7 @@ jobs:
 
       # vulnerability scanning to verify PRs
       - name: Docker Scout compare
-        uses: docker/scout-action@4a5494eb7c2b3d712b805ee65ad57a0371d50874
+        uses: docker/scout-action@67eb1afe777307506aaecb9acd9a0e0389cb99ae
         id: pr-compare
         if: github.event_name == 'pull_request' && vars.DOCKERHUB_USERNAME != ''
         with: