Skip to content

ci: bump anchore/scan-action from 522bcc5cc7e62e4ce7cbe30f22372b991b432751 to 7bfc9651f6057a858b4f988e4d34164e5d5ea5af#11

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/anchore/scan-action-7bfc9651f6057a858b4f988e4d34164e5d5ea5af
Closed

ci: bump anchore/scan-action from 522bcc5cc7e62e4ce7cbe30f22372b991b432751 to 7bfc9651f6057a858b4f988e4d34164e5d5ea5af#11
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/anchore/scan-action-7bfc9651f6057a858b4f988e4d34164e5d5ea5af

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 28, 2026

Bumps anchore/scan-action from 522bcc5cc7e62e4ce7cbe30f22372b991b432751 to 7bfc9651f6057a858b4f988e4d34164e5d5ea5af.

Changelog

Sourced from anchore/scan-action's changelog.

Release

A release of scan-action comprises:

  • a new semver git tag from the current tip of the main branch
  • a new github release with a changelog
  • the action distributable committed into the repo at dist/

Ideally releasing should be done often with small increments when possible. Unless a breaking change is blocking the release, or no fixes/features have been merged, a good target release cadence is between every 1 or 2 weeks.

Creating a release

Releases are automatically drafted on every push to the main branch. Please see the github releases page for the latest draft. To publish the release:

  • Click "edit" (the pencil icon)
  • Modify the changelog as needed (for instance, if grype was bumped multiple times, include only the latest version bump entry)
  • Click "publish"
Commits
  • 7bfc965 chore(deps): update Grype to latest release (#655)
  • ccda414 chore(deps): update Grype to latest release (#645)
  • b943ddb chore: bump release-drafter/release-drafter from 7.1.1 to 7.2.0 (#648)
  • f00931f chore: bump peter-evans/create-pull-request from 8.1.0 to 8.1.1 (#650)
  • 07a4c04 chore: bump globals from 17.4.0 to 17.5.0 (#651)
  • e83738e chore: bump zizmorcore/zizmor-action from 0.5.2 to 0.5.3 (#652)
  • 5068d8a chore: bump prettier from 3.8.1 to 3.8.2 (#649)
  • 46ffe77 chore: bump lodash from 4.17.23 to 4.18.1 (#641)
  • 040e142 chore: bump eslint from 10.0.3 to 10.2.0 (#646)
  • 06d896d chore: bump esbuild from 0.27.4 to 0.28.0 (#644)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
ci: bump anchore/scan-action
dc4dfb2 
Bumps [anchore/scan-action](https://github.com/anchore/scan-action) from 522bcc5cc7e62e4ce7cbe30f22372b991b432751 to 7bfc9651f6057a858b4f988e4d34164e5d5ea5af.
- [Release notes](https://github.com/anchore/scan-action/releases)
- [Changelog](https://github.com/anchore/scan-action/blob/main/RELEASE.md)
- [Commits](anchore/scan-action@522bcc5...7bfc965)

---
updated-dependencies:
- dependency-name: anchore/scan-action
  dependency-version: 7bfc9651f6057a858b4f988e4d34164e5d5ea5af
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Apr 28, 2026
@cloudflare-workers-and-pages
Copy link
Copy Markdown

cloudflare-workers-and-pages Bot commented Apr 28, 2026
edited
Loading

Deploying dakaneye-dev with  Cloudflare Pages  Cloudflare Pages

Latest commit: dc4dfb2
Status: ✅  Deploy successful!
Preview URL: https://52d89f9c.dakaneye-dev.pages.dev
Branch Preview URL: https://dependabot-github-actions-an-01ub.dakaneye-dev.pages.dev

View logs

@dependabot dependabot Bot mentioned this pull request Apr 28, 2026
Closed
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github May 5, 2026

Superseded by #13.

@dependabot dependabot Bot closed this May 5, 2026
@dependabot dependabot Bot deleted the dependabot/github_actions/anchore/scan-action-7bfc9651f6057a858b4f988e4d34164e5d5ea5af branch May 5, 2026 17:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants