dependabot[bot]
|
4eccb7db0e
|
chore(deps): bump actions/checkout from 3.5.2 to 3.5.3
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.5.2 to 3.5.3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](8e5e7e5ab8...c85c95e3d7)
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2023-06-12 01:58:35 +00:00 |
|
Gabriela Gutierrez
|
346f7bc0fd
|
Ref actions by commit SHA in sbom_generator.yml
It's important to make sure the SHA's are from the original repositories and not forks.
For reference:
https://github.com/actions/checkout/releases/tag/v3.5.2
8e5e7e5ab8
https://github.com/advanced-security/sbom-generator-action/releases/tag/v0.0.1
375dee8e61
https://github.com/actions/upload-artifact/releases/tag/v3.1.2
0b7f8abb15
Signed-off-by: Gabriela Gutierrez <gabigutierrez@google.com>
|
2023-06-07 17:03:30 -03:00 |
|
dependabot[bot]
|
d6ee47e5dc
|
chore(deps): bump actions/upload-artifact from 3.1.0 to 3.1.2
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.0 to 3.1.2.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v3.1.0...v3.1.2)
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2023-04-07 01:57:53 +00:00 |
|
shirou
|
755bcab7b9
|
Update branch of sbom_generator.yml
|
2023-04-06 23:10:05 +09:00 |
|
shirou
|
d7f65a84ca
|
Add github SBOM Generator
See this GitHub blog post
https://github.blog/2023-03-28-introducing-self-service-sboms/
|
2023-04-06 12:31:41 +00:00 |
|