ci(deps): bump microsoft.sbom.dotnettool from 2.2.5 to 2.2.6

[dependabot[bot]]

Bumps microsoft.sbom.dotnettool from 2.2.5 to 2.2.6.

Release notes

Sourced from microsoft.sbom.dotnettool's releases.

v2.2.6

⚙️ Changes

• Add redact documentation by @​sfoslund (#582)
• Add redaction workflow logic by @​sfoslund (#581)
• Add Validate Format functionality by @​alisonlomaka (#580)
• Add validate-format verb with placeholder for future validation by @​alisonlomaka (#577)
• Tweaks to some analyzer rules by @​alisonlomaka (#576)
• Add redact verb to CLI by @​sfoslund (#575)
• Loosen constraints on SBOM/SPDX validation by @​alisonlomaka (#572)
• Remove an unneeded comment (formatted as a heading) in documentation by @​Jeanot-Zubler (#533)
• Clarify validate -o argument description by @​alisonlomaka (#567)
• Explicitly install .NET 6.0 and 8.0 in CI by @​sfoslund (#568)

Commits

• 0b4db48 Add redact documentation (#582)
• b18bb46 Add redaction workflow logic (#581)
• b005f3f Add Validate Format functionality (#580)
• 1d832e0 Add validate-format verb with placeholder for future validation (#577)
• 29bc8fb Change SA1116, 1010, and 1024 to suggestions so they will no longer break com...
• 4eddb7f Add redact verb to CLI (#575)
• 111282b Loosen constraints on SBOM/SPDX validation (#572)
• 8141070 Remove an unneeded comment (formatted as a heading) in documentation (#533)
• 53f7508 Clarify the README description of validate argument -o; this argument require...
• 947bb26 Explicitly install .NET 6.0 and 8.0 in CI (#568)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

The following labels could not be found: dependencies.

[dependabot[bot]]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.