Bump docker/build-push-action from 5.3.0 to 6.6.1

[dependabot[bot]]

Bumps docker/build-push-action from 5.3.0 to 6.6.1.

Release notes

Sourced from docker/build-push-action's releases.

v6.6.1

• Bump @​docker/actions-toolkit from 0.37.0 to 0.37.1 in docker/build-push-action#1205

Full Changelog: https://github.com/docker/build-push-action/compare/v6.6.0...v6.6.1

v6.6.0

• Generate GitHub annotations for build checks by @​crazy-max in docker/build-push-action#1197
• Bump @​docker/actions-toolkit from 0.35.0 to 0.37.0 in docker/build-push-action#1196 docker/build-push-action#1198

Full Changelog: https://github.com/docker/build-push-action/compare/v6.5.0...v6.6.0

v6.5.0

• Bump @​docker/actions-toolkit from 0.33.0 to 0.35.0 in docker/build-push-action#1186 docker/build-push-action#1191

Full Changelog: https://github.com/docker/build-push-action/compare/v6.4.1...v6.5.0

v6.4.1

• revert "Set repository and ghtoken attributes for GitHub Actions cache backend" by @​crazy-max in docker/build-push-action#1183

Full Changelog: https://github.com/docker/build-push-action/compare/v6.4.0...v6.4.1

v6.4.0

• Set repository and ghtoken attributes for GitHub Actions cache backend by @​crazy-max in docker/build-push-action#1133
• Bump @​docker/actions-toolkit from 0.31.0 to 0.33.0 in docker/build-push-action#1179

Full Changelog: https://github.com/docker/build-push-action/compare/v6.3.0...v6.4.0

v6.3.0

• DOCKER_BUILD_RECORD_UPLOAD environment variable to enable/disable build record upload by @​crazy-max in docker/build-push-action#1172
• DOCKER_BUILD_NO_SUMMARY has been deprecated. Set DOCKER_BUILD_SUMMARY to false instead by @​crazy-max in docker/build-push-action#1170 docker/build-push-action#1173
• Bump @​docker/actions-toolkit from 0.28.0 to 0.31.0 in docker/build-push-action#1171 docker/build-push-action#1159 docker/build-push-action#1169

Full Changelog: https://github.com/docker/build-push-action/compare/v6.2.0...v6.3.0

v6.2.0

• Use default retention days for build export artifact by @​crazy-max in docker/build-push-action#1153
• Bump @​docker/actions-toolkit from 0.27.0 to 0.28.0 in docker/build-push-action#1158

Full Changelog: https://github.com/docker/build-push-action/compare/v6.1.0...v6.2.0

v6.1.0

• Bump @​docker/actions-toolkit from 0.26.2 to 0.27.0 in docker/build-push-action#1149

Full Changelog: https://github.com/docker/build-push-action/compare/v6.0.2...v6.1.0

v6.0.2

• Bump @​docker/actions-toolkit from 0.26.1 to 0.26.2 in docker/build-push-action#1147

Full Changelog: https://github.com/docker/build-push-action/compare/v6.0.1...v6.0.2

... (truncated)

Commits

• 16ebe77 Merge pull request #1205 from docker/dependabot/npm_and_yarn/docker/actions-t...
• 646a62b chore: update generated content
• d92ab13 chore(deps): Bump @​docker/actions-toolkit from 0.37.0 to 0.37.1
• 4f7cdeb Merge pull request #1198 from docker/dependabot/npm_and_yarn/docker/actions-t...
• ad3cd77 chore: update generated content
• 3efbc13 chore(deps): Bump @​docker/actions-toolkit from 0.36.0 to 0.37.0
• 2dbe91d Merge pull request #1197 from crazy-max/build-checks
• 7de3854 chore: update generated content
• 175aa53 opt to disable github annotations generation for build checks
• 806a2a4 generate GitHub annotations for build checks
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions[bot]]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
actions/docker/build-push-action	16ebe778df0e7752d2cfcbd924afdbbd89c1a755	:green_circle: 6.3	Details Check Score Reason Code-Review :green_circle: 6 Found 3/5 approved changesets -- score normalized to 6 Maintained :green_circle: 10 30 commit(s) and 19 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Security-Policy :green_circle: 9 security policy file detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Signed-Releases :warning: -1 no releases found Fuzzing :warning: 0 project is not fuzzed Packaging :green_circle: 10 packaging workflow detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
actions/docker/build-push-action	2cdde995de11925a030ce8070c3d77a52ffcf1c0	:green_circle: 6.3	Details Check Score Reason Code-Review :green_circle: 6 Found 3/5 approved changesets -- score normalized to 6 Maintained :green_circle: 10 30 commit(s) and 19 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Security-Policy :green_circle: 9 security policy file detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Signed-Releases :warning: -1 no releases found Fuzzing :warning: 0 project is not fuzzed Packaging :green_circle: 10 packaging workflow detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected

Scanned Manifest Files

.github/workflows/container-image.yml

• docker/build-push-action@16ebe778df0e7752d2cfcbd924afdbbd89c1a755
• docker/build-push-action@2cdde995de11925a030ce8070c3d77a52ffcf1c0

[dependabot[bot]]

Superseded by #189.