chore(deps): bump anchore/scan-action from 3.2.0 to 3.2.4

[dependabot[bot]]

Bumps anchore/scan-action from 3.2.0 to 3.2.4.

Release notes

Sourced from anchore/scan-action's releases.

v3.2.4

New in scan-action v3.2.4

• Update Grype to v0.34.7 (#163)
• More closely align parameters with sbom-action (#158)

v3.2.3

New in scan-action v3.2.3

• Support SBOM input for scanning (#154) [@​harmw]

v3.2.2

New in scan-action v3.2.2

• Add sub-action to download Grype (#152)
• Update Grype to 0.34.4 to fix a nil pointer in SARIF generation (#151)

v3.2.1

New in scan-action v3.2.1

• Remove SARIF processing (#148)

Commits

• e83a5d9 Update Grype to v0.34.7 (#163)
• f39983b Explicitly run npm run build for auto-update PR (#166)
• 95d50bf Update husky and other deps, fix erroneous test (#165)
• 94892a6 More closely align parameters with sbom-action (#158)
• d9a2c3f Correct Grype auto-updater (#164)
• 5305f6a Bump minimist from 1.2.5 to 1.2.6 (#157)
• 72d6e97 Bump ansi-regex from 4.1.0 to 4.1.1 (#156)
• 786cbf4 Bump node-fetch from 2.6.1 to 2.6.7 (#149)
• de2e60f Update grype release check secret names (#161)
• d39ae4a Support SBOM input for scanning (#154)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions[bot]]

:tada: This PR is included in version 2.1.0 :tada:

The release is available on GitHub release

Your semantic-release bot :package::rocket: