From ae0008b452e8998ee9793ecd6204f34f463dacfa Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 10 Jun 2024 12:38:37 +0000
Subject: [PATCH] deps: bump the production-dependencies group with 2 updates

Bumps the production-dependencies group with 2 updates: [docker/build-push-action](https://github.com/docker/build-push-action) and [advanced-security/spdx-dependency-submission-action](https://github.com/advanced-security/spdx-dependency-submission-action).


Updates `docker/build-push-action` from 5.3.0 to 5.4.0
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v5.3.0...v5.4.0)

Updates `advanced-security/spdx-dependency-submission-action` from 0.0.1 to 0.1.0
- [Release notes](https://github.com/advanced-security/spdx-dependency-submission-action/releases)
- [Changelog](https://github.com/advanced-security/spdx-dependency-submission-action/blob/main/.release.yml)
- [Commits](https://github.com/advanced-security/spdx-dependency-submission-action/compare/v0.0.1...v0.1.0)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: advanced-security/spdx-dependency-submission-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/container.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/container.yml b/.github/workflows/container.yml
index c900b00..325c0de 100644
--- a/.github/workflows/container.yml
+++ b/.github/workflows/container.yml
@@ -89,7 +89,7 @@ jobs:
             type=semver,pattern=v{{major}},value=${{ inputs.version }}
 
       - name: Build Docker image
-        uses: docker/build-push-action@v5.3.0
+        uses: docker/build-push-action@v5.4.0
         id: build
         with:
           file: "${{ inputs.docker-file }}"
@@ -102,7 +102,7 @@ jobs:
 
       # Upload Software Bill of Materials (SBOM) to GitHub
       - name: Upload SBOM
-        uses: advanced-security/spdx-dependency-submission-action@v0.0.1
+        uses: advanced-security/spdx-dependency-submission-action@v0.1.0
         if: ${{ inputs.sbom == 'true' }}
         with:
           filePath: '.'