From 5901b30c75550ef866a3afefaf2d10161399d0f6 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 1 Jul 2024 12:34:28 +0000
Subject: [PATCH] deps: bump the production-dependencies group across 1
 directory with 2 updates

Bumps the production-dependencies group with 2 updates in the / directory: [docker/build-push-action](https://github.com/docker/build-push-action) and [advanced-security/spdx-dependency-submission-action](https://github.com/advanced-security/spdx-dependency-submission-action).


Updates `docker/build-push-action` from 5.4.0 to 6.2.0
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v5.4.0...v6.2.0)

Updates `advanced-security/spdx-dependency-submission-action` from 0.1.0 to 0.1.1
- [Release notes](https://github.com/advanced-security/spdx-dependency-submission-action/releases)
- [Changelog](https://github.com/advanced-security/spdx-dependency-submission-action/blob/main/.release.yml)
- [Commits](https://github.com/advanced-security/spdx-dependency-submission-action/compare/v0.1.0...v0.1.1)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: advanced-security/spdx-dependency-submission-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/container.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/container.yml b/.github/workflows/container.yml
index 325c0de..8dc48b7 100644
--- a/.github/workflows/container.yml
+++ b/.github/workflows/container.yml
@@ -89,7 +89,7 @@ jobs:
             type=semver,pattern=v{{major}},value=${{ inputs.version }}
 
       - name: Build Docker image
-        uses: docker/build-push-action@v5.4.0
+        uses: docker/build-push-action@v6.2.0
         id: build
         with:
           file: "${{ inputs.docker-file }}"
@@ -102,7 +102,7 @@ jobs:
 
       # Upload Software Bill of Materials (SBOM) to GitHub
       - name: Upload SBOM
-        uses: advanced-security/spdx-dependency-submission-action@v0.1.0
+        uses: advanced-security/spdx-dependency-submission-action@v0.1.1
         if: ${{ inputs.sbom == 'true' }}
         with:
           filePath: '.'