From 0cfd9c15887fede5ac93f25d704cc008d9c85ddb Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 18 Dec 2024 16:20:39 +0000 Subject: [PATCH] Bump anchore/scan-action from 5 to 6 Bumps [anchore/scan-action](https://github.com/anchore/scan-action) from 5 to 6. - [Release notes](https://github.com/anchore/scan-action/releases) - [Changelog](https://github.com/anchore/scan-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/anchore/scan-action/compare/v5...v6) --- updated-dependencies: - dependency-name: anchore/scan-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/vuln-scans.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/vuln-scans.yml b/.github/workflows/vuln-scans.yml index a0b4e9d9e4..81ff694d5f 100644 --- a/.github/workflows/vuln-scans.yml +++ b/.github/workflows/vuln-scans.yml @@ -41,7 +41,7 @@ jobs: runs-on: ubuntu-24.04 steps: - uses: actions/checkout@v4 - - uses: anchore/scan-action@v5 + - uses: anchore/scan-action@v6 with: severity-cutoff: "high" only-fixed: true @@ -150,7 +150,7 @@ jobs: name: otelcol-${{ matrix.ARCH }}${{ matrix.FIPS == true && '-fips' || '' }} path: ./dist - run: docker load -i ./dist/image.tar - - uses: anchore/scan-action@v5 + - uses: anchore/scan-action@v6 with: severity-cutoff: "high" only-fixed: true @@ -193,7 +193,7 @@ jobs: docker build -t otelcol-windows --pull --build-arg BASE_IMAGE=${base_image} --build-arg JMX_METRIC_GATHERER_RELEASE=$(Get-Content packaging\jmx-metric-gatherer-release.txt) -f .\cmd\otelcol\Dockerfile.windows .\cmd\otelcol\ Remove-Item .\cmd\otelcol\otelcol.exe Remove-Item .\cmd\otelcol\agent-bundle_windows_amd64.zip - - uses: anchore/scan-action@v5 + - uses: anchore/scan-action@v6 with: severity-cutoff: "high" only-fixed: true