anchore/sbom-action (anchore/sbom-action)
### [`v0.17.1`](https://togithub.com/anchore/sbom-action/releases/tag/v0.17.1)
[Compare Source](https://togithub.com/anchore/sbom-action/compare/v0.17.0...v0.17.1)
#### Changes in v0.17.1
- chore(deps): update Syft to v1.11.0 ([#483](https://togithub.com/anchore/sbom-action/issues/483)) \[[anchore-actions-token-generator](https://togithub.com/anchore-actions-token-generator)]
### [`v0.17.0`](https://togithub.com/anchore/sbom-action/releases/tag/v0.17.0)
[Compare Source](https://togithub.com/anchore/sbom-action/compare/v0.16.1...v0.17.0)
#### Changes in v0.17.0
- chore(deps): update Syft to v1.9.0 ([#479](https://togithub.com/anchore/sbom-action/issues/479)) \[[anchore-actions-token-generator](https://togithub.com/anchore-actions-token-generator)]
- chore(deps): bump actions/checkout from 4.1.6 to 4.1.7 ([#474](https://togithub.com/anchore/sbom-action/issues/474)) \[[dependabot](https://togithub.com/dependabot)]
- chore(deps): bump peter-evans/create-pull-request from 6.0.5 to 6.1.0 ([#475](https://togithub.com/anchore/sbom-action/issues/475)) \[[dependabot](https://togithub.com/dependabot)]
- chore: serialize tests to prevent install race ([#478](https://togithub.com/anchore/sbom-action/issues/478)) \[[willmurphyscode](https://togithub.com/willmurphyscode)]
### [`v0.16.1`](https://togithub.com/anchore/sbom-action/releases/tag/v0.16.1)
[Compare Source](https://togithub.com/anchore/sbom-action/compare/v0.16.0...v0.16.1)
#### Changes in v0.16.1
- fix: workaround windows install issue ([#477](https://togithub.com/anchore/sbom-action/issues/477)) \[[willmurphyscode](https://togithub.com/willmurphyscode)]
- fix: allow users to properly use the file input over the default path value ([#471](https://togithub.com/anchore/sbom-action/issues/471)) \[[komish](https://togithub.com/komish)]
- chore(deps): update Syft to v1.5.0 ([#470](https://togithub.com/anchore/sbom-action/issues/470)) \[[anchore-actions-token-generator](https://togithub.com/anchore-actions-token-generator)]
- docs: notes for matrix and required permissions ([#469](https://togithub.com/anchore/sbom-action/issues/469)) \[[kzantow](https://togithub.com/kzantow)]
- chore(deps): bump actions/checkout from 4.1.5 to 4.1.6 ([#466](https://togithub.com/anchore/sbom-action/issues/466)) \[[dependabot](https://togithub.com/dependabot)]
### [`v0.16.0`](https://togithub.com/anchore/sbom-action/releases/tag/v0.16.0): v0.16
[Compare Source](https://togithub.com/anchore/sbom-action/compare/v0.15.11...v0.16.0)
#### Changes in v0.16.0
- Update Syft to v1.4.1 ([#465](https://togithub.com/anchore/sbom-action/issues/465))
- Update GitHub artifact client ([#463](https://togithub.com/anchore/sbom-action/issues/463)) \[[kzantow](https://togithub.com/kzantow)]
NOTE: if you are using this action within a *matrix build* and see failures attempting to upload artifacts with duplicate names, you will need to set the `artifact-name` to be unique based on the matrix properties ([an example here](https://togithub.com/anchore/sbom-action/blob/main/.github/workflows/test.yml#L36)). This is due to a change to use a newer GitHub API which no longer allows artifacts with duplicate names.
### [`v0.15.11`](https://togithub.com/anchore/sbom-action/releases/tag/v0.15.11)
[Compare Source](https://togithub.com/anchore/sbom-action/compare/v0.15.10...v0.15.11)
#### Changes in v0.15.11
- chore(deps): update Syft to v1.3.0 ([#456](https://togithub.com/anchore/sbom-action/issues/456)) \[[anchore-actions-token-generator](https://togithub.com/anchore-actions-token-generator)]
- chore: remove outdated snapshot workflow ([#457](https://togithub.com/anchore/sbom-action/issues/457)) \[[spiffcs](https://togithub.com/spiffcs)]
- fix: don't pass in a separate env. This makes it impossible to pass env vars via the action context to syft. ([#455](https://togithub.com/anchore/sbom-action/issues/455)) \[[iNoahNothing](https://togithub.com/iNoahNothing)]
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
â™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
[ ] If you want to rebase/retry this PR, check this box
This PR contains the following updates:
v0.15.10->v0.17.1Release Notes
anchore/sbom-action (anchore/sbom-action)
### [`v0.17.1`](https://togithub.com/anchore/sbom-action/releases/tag/v0.17.1) [Compare Source](https://togithub.com/anchore/sbom-action/compare/v0.17.0...v0.17.1) #### Changes in v0.17.1 - chore(deps): update Syft to v1.11.0 ([#483](https://togithub.com/anchore/sbom-action/issues/483)) \[[anchore-actions-token-generator](https://togithub.com/anchore-actions-token-generator)] ### [`v0.17.0`](https://togithub.com/anchore/sbom-action/releases/tag/v0.17.0) [Compare Source](https://togithub.com/anchore/sbom-action/compare/v0.16.1...v0.17.0) #### Changes in v0.17.0 - chore(deps): update Syft to v1.9.0 ([#479](https://togithub.com/anchore/sbom-action/issues/479)) \[[anchore-actions-token-generator](https://togithub.com/anchore-actions-token-generator)] - chore(deps): bump actions/checkout from 4.1.6 to 4.1.7 ([#474](https://togithub.com/anchore/sbom-action/issues/474)) \[[dependabot](https://togithub.com/dependabot)] - chore(deps): bump peter-evans/create-pull-request from 6.0.5 to 6.1.0 ([#475](https://togithub.com/anchore/sbom-action/issues/475)) \[[dependabot](https://togithub.com/dependabot)] - chore: serialize tests to prevent install race ([#478](https://togithub.com/anchore/sbom-action/issues/478)) \[[willmurphyscode](https://togithub.com/willmurphyscode)] ### [`v0.16.1`](https://togithub.com/anchore/sbom-action/releases/tag/v0.16.1) [Compare Source](https://togithub.com/anchore/sbom-action/compare/v0.16.0...v0.16.1) #### Changes in v0.16.1 - fix: workaround windows install issue ([#477](https://togithub.com/anchore/sbom-action/issues/477)) \[[willmurphyscode](https://togithub.com/willmurphyscode)] - fix: allow users to properly use the file input over the default path value ([#471](https://togithub.com/anchore/sbom-action/issues/471)) \[[komish](https://togithub.com/komish)] - chore(deps): update Syft to v1.5.0 ([#470](https://togithub.com/anchore/sbom-action/issues/470)) \[[anchore-actions-token-generator](https://togithub.com/anchore-actions-token-generator)] - docs: notes for matrix and required permissions ([#469](https://togithub.com/anchore/sbom-action/issues/469)) \[[kzantow](https://togithub.com/kzantow)] - chore(deps): bump actions/checkout from 4.1.5 to 4.1.6 ([#466](https://togithub.com/anchore/sbom-action/issues/466)) \[[dependabot](https://togithub.com/dependabot)] ### [`v0.16.0`](https://togithub.com/anchore/sbom-action/releases/tag/v0.16.0): v0.16 [Compare Source](https://togithub.com/anchore/sbom-action/compare/v0.15.11...v0.16.0) #### Changes in v0.16.0 - Update Syft to v1.4.1 ([#465](https://togithub.com/anchore/sbom-action/issues/465)) - Update GitHub artifact client ([#463](https://togithub.com/anchore/sbom-action/issues/463)) \[[kzantow](https://togithub.com/kzantow)] NOTE: if you are using this action within a *matrix build* and see failures attempting to upload artifacts with duplicate names, you will need to set the `artifact-name` to be unique based on the matrix properties ([an example here](https://togithub.com/anchore/sbom-action/blob/main/.github/workflows/test.yml#L36)). This is due to a change to use a newer GitHub API which no longer allows artifacts with duplicate names. ### [`v0.15.11`](https://togithub.com/anchore/sbom-action/releases/tag/v0.15.11) [Compare Source](https://togithub.com/anchore/sbom-action/compare/v0.15.10...v0.15.11) #### Changes in v0.15.11 - chore(deps): update Syft to v1.3.0 ([#456](https://togithub.com/anchore/sbom-action/issues/456)) \[[anchore-actions-token-generator](https://togithub.com/anchore-actions-token-generator)] - chore: remove outdated snapshot workflow ([#457](https://togithub.com/anchore/sbom-action/issues/457)) \[[spiffcs](https://togithub.com/spiffcs)] - fix: don't pass in a separate env. This makes it impossible to pass env vars via the action context to syft. ([#455](https://togithub.com/anchore/sbom-action/issues/455)) \[[iNoahNothing](https://togithub.com/iNoahNothing)]Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
â™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.