Bump docker/scout-action from 1.8.0 to 1.9.1

[dependabot[bot]]

Bumps docker/scout-action from 1.8.0 to 1.9.1.

Release notes

Sourced from docker/scout-action's releases.

v1.9.1

General bug fixes and performance improvements

Support single arch images for attestation-add command.

---

Contributors

Commits

• b0c66a3 Merge 71a25ddf64ec7e637d7a8c7f36df4b1ad53aca29 into cc6a9c02565075538531ec235...
• 71a25dd [BOT] Publish v1.9.1 release
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions[bot]]

:mag: Vulnerabilities of sommerfeldio/source2adoc:638aed28ff79d3da6e26f38ca24b99455c9d600f

:package: Image Reference sommerfeldio/source2adoc:638aed28ff79d3da6e26f38ca24b99455c9d600f

digest	sha256:d8eb1d646c85c58cad477fea45f1633eeaaa619fe5dbb10f9ffd527e604e042d
vulnerabilities
size	6.6 MB
packages	22

:package: Base Image alpine:3

also known as	3.19 3.19.1 latest
digest	sha256:6457d53fb065d6f250e1504b9bc42d5b6c65941d57532c072d929dd0628977d0
vulnerabilities

ssl_client 1.36.1-r15 (apk) pkg:apk/alpine/ssl_client@1.36.1-r15?arch=x86_64&upstream=busybox&distro=alpine-3.19.1 ```dockerfile # Dockerfile (39:39) FROM alpine:3.19.1 AS run ``` Affected range <1.36.1-r16 Fixed version 1.36.1-r16 EPSS Score 0.04% EPSS Percentile 12th percentile Description Affected range <1.36.1-r17 Fixed version 1.36.1-r17 EPSS Score 0.04% EPSS Percentile 12th percentile Description Affected range <1.36.1-r17 Fixed version 1.36.1-r17 EPSS Score 0.04% EPSS Percentile 12th percentile Description Affected range <1.36.1-r17 Fixed version 1.36.1-r17 EPSS Score 0.04% EPSS Percentile 12th percentile Description

libssl3 3.1.4-r5 (apk) pkg:apk/alpine/libssl3@3.1.4-r5?arch=x86_64&upstream=openssl&distro=alpine-3.19.1 ```dockerfile # Dockerfile (39:39) FROM alpine:3.19.1 AS run ``` Affected range <3.1.5-r0 Fixed version 3.1.5-r0 EPSS Score 0.04% EPSS Percentile 15th percentile Description Affected range <3.1.4-r6 Fixed version 3.1.4-r6 EPSS Score 0.04% EPSS Percentile 10th percentile Description

[github-actions[bot]]

Overview

Image reference	sommerfeldio/source2adoc:rc	sommerfeldio/source2adoc:638aed28ff79d3da6e26f38ca24b99455c9d600f
- digest	bd86e46d4ca3	d8eb1d646c85
- provenance	https://github.com/sommerfeld-io/source2adoc/commit/60f8119d2dbbf797d61fea8496d579844f9ee414	https://github.com/sommerfeld-io/source2adoc/commit/638aed28ff79d3da6e26f38ca24b99455c9d600f
- vulnerabilities
- platform	linux/amd64	linux/amd64
- size	6.6 MB	6.6 MB (+11 B)
- packages	27	22 (-5)
Base Image	alpine:3 also known as: • 3.19 • 3.19.1 • latest	alpine:3.19.1 also known as: • 3 • 3.19 • latest
- vulnerabilities

Labels (3 changes)

> * `±` 3 changed > * _9 unchanged_ ```diff maintainer=sebastian@sommerfeld.io org.opencontainers.image.authors=source2adoc open source project -org.opencontainers.image.created=2024-05-23T14:45:30.832Z +org.opencontainers.image.created=2024-05-27T19:15:38.760Z org.opencontainers.image.description=Streamline the process of generating AsciiDoc documentation from inline comments within source code files. This tool converts inline documentation into AsciiDoc files, tailored for seamless integration with Antora. org.opencontainers.image.documentation=https://source2adoc.sommerfeld.io org.opencontainers.image.licenses=NOASSERTION -org.opencontainers.image.revision=60f8119d2dbbf797d61fea8496d579844f9ee414 +org.opencontainers.image.revision=638aed28ff79d3da6e26f38ca24b99455c9d600f org.opencontainers.image.source=https://github.com/sommerfeld-io/source2adoc org.opencontainers.image.title=source2adoc org.opencontainers.image.url=https://github.com/sommerfeld-io/source2adoc org.opencontainers.image.vendor=source2adoc open source project -org.opencontainers.image.version=main +org.opencontainers.image.version=pr-64 ```

Packages and Vulnerabilities (35 package changes and 6 vulnerability changes)

> * :heavy_plus_sign: 15 packages added > * :heavy_minus_sign: 19 packages removed > * :infinity: 1 packages changed > * 6 packages unchanged > * :heavy_exclamation_mark: 6 vulnerabilities added

Changes for packages of type alpine (19 changes)

	Package	Version sommerfeldio/source2adoc:rc	Version sommerfeldio/source2adoc:638aed28ff79d3da6e26f38ca24b99455c9d600f
:heavy_minus_sign:	alpine-baselayout	3.4.3-r2
:heavy_minus_sign:	alpine-baselayout-data	3.4.3-r2
:heavy_minus_sign:	alpine-keys	2.4-r1
:heavy_minus_sign:	apk-tools	2.14.0-r5
:heavy_minus_sign:	busybox	1.36.1-r15
:heavy_minus_sign:	busybox-binsh	1.36.1-r15
:heavy_minus_sign:	ca-certificates	20230506-r0
:heavy_minus_sign:	ca-certificates-bundle	20230506-r0
:heavy_minus_sign:	libc-dev	0.7.2-r5
:heavy_minus_sign:	libc-utils	0.7.2-r5
:heavy_minus_sign:	libcrypto3	3.1.4-r5
:heavy_minus_sign:	libssl3	3.1.4-r5
:heavy_minus_sign:	musl	1.2.4_git20230717-r4
:heavy_minus_sign:	musl-utils	1.2.4_git20230717-r4
:heavy_minus_sign:	openssl	3.1.4-r5
:heavy_minus_sign:	pax-utils	1.3.7-r2
:heavy_minus_sign:	scanelf	1.3.7-r2
:heavy_minus_sign:	ssl_client	1.36.1-r15
:heavy_minus_sign:	zlib	1.3.1-r0

Changes for packages of type apk (15 changes)

	Package	Version sommerfeldio/source2adoc:rc	Version sommerfeldio/source2adoc:638aed28ff79d3da6e26f38ca24b99455c9d600f
:heavy_plus_sign:	alpine-baselayout		3.4.3-r2
:heavy_plus_sign:	alpine-baselayout-data		3.4.3-r2
:heavy_plus_sign:	alpine-keys		2.4-r1
:heavy_plus_sign:	apk-tools		2.14.0-r5
:heavy_plus_sign:	busybox		1.36.1-r15
:heavy_plus_sign:	busybox-binsh		1.36.1-r15
:heavy_plus_sign:	ca-certificates-bundle		20230506-r0
:heavy_plus_sign:	libc-utils		0.7.2-r5
:heavy_plus_sign:	libcrypto3		3.1.4-r5
:heavy_plus_sign:	libssl3		3.1.4-r5
			Added vulnerabilities (2):
:heavy_plus_sign:	musl		1.2.4_git20230717-r4
:heavy_plus_sign:	musl-utils		1.2.4_git20230717-r4
:heavy_plus_sign:	scanelf		1.3.7-r2
:heavy_plus_sign:	ssl_client		1.36.1-r15
			Added vulnerabilities (4):
:heavy_plus_sign:	zlib		1.3.1-r0

Changes for packages of type golang (1 changes)

	Package	Version sommerfeldio/source2adoc:rc	Version sommerfeldio/source2adoc:638aed28ff79d3da6e26f38ca24b99455c9d600f
:infinity:	stdlib	go1.22.3	1.22.3