Bump docker/scout-action from 1.2.0 to 1.4.1

Bumps [docker/scout-action](https://github.com/docker/scout-action) from 1.2.0 to 1.4.1. - [Release notes](https://github.com/docker/scout-action/releases) - [Commits](docker/scout-action@7c61653...4a5494e) --- updated-dependencies: - dependency-name: docker/scout-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
mauwii · Feb 7, 2024 · 820705b · 820705b
1 parent 852a29a
commit 820705b
Showing 1 changed file with 3 additions and 3 deletions.
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -156,7 +156,7 @@ jobs:
 
       # Docker-Scout - Create SBOM
       - name: Create SBOM
-        uses: docker/scout-action@7c61653c2736d21969dd4593fde76c670d4a86cb
+        uses: docker/scout-action@4a5494eb7c2b3d712b805ee65ad57a0371d50874
         id: docker-scout-sbom
         continue-on-error: true
         if: env.CONTAINER_PUSH == 'true' && vars.DOCKERHUB_USERNAME != ''
@@ -168,7 +168,7 @@ jobs:
 
       # vulnerability scan the image for main branch and upload the results as a SARIF file
       - name: Analyze for critical and high CVEs
-        uses: docker/scout-action@7c61653c2736d21969dd4593fde76c670d4a86cb
+        uses: docker/scout-action@4a5494eb7c2b3d712b805ee65ad57a0371d50874
         id: docker-scout-cves
         continue-on-error: true
         if: env.CONTAINER_PUSH == 'true'
@@ -187,7 +187,7 @@ jobs:
 
       # vulnerability scanning to verify PRs
       - name: Docker Scout compare
-        uses: docker/scout-action@7c61653c2736d21969dd4593fde76c670d4a86cb
+        uses: docker/scout-action@4a5494eb7c2b3d712b805ee65ad57a0371d50874
         id: pr-compare
         if: github.event_name == 'pull_request' && vars.DOCKERHUB_USERNAME != ''
         with: