From f742e0318704122a2775220930702d71eeb41808 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 6 Jul 2026 14:18:59 +0000 Subject: [PATCH] chore(deps): bump zircote/.github/.github/workflows/sign-and-attest.yml Bumps [zircote/.github/.github/workflows/sign-and-attest.yml](https://github.com/zircote/.github) from 740cb8efb57af0187f88e9b4f939355b871a5895 to 5a805176eb4f3f22cba7bb0a25d46dc7306872e3. - [Release notes](https://github.com/zircote/.github/releases) - [Changelog](https://github.com/zircote/.github/blob/main/CHANGELOG.md) - [Commits](https://github.com/zircote/.github/compare/740cb8efb57af0187f88e9b4f939355b871a5895...5a805176eb4f3f22cba7bb0a25d46dc7306872e3) --- updated-dependencies: - dependency-name: zircote/.github/.github/workflows/sign-and-attest.yml dependency-version: 5a805176eb4f3f22cba7bb0a25d46dc7306872e3 dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- .github/workflows/pipeline.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/pipeline.yml b/.github/workflows/pipeline.yml index c4ff1e5..a38c576 100644 --- a/.github/workflows/pipeline.yml +++ b/.github/workflows/pipeline.yml @@ -159,7 +159,7 @@ jobs: contents: read # zircote/.github main (2026-06-11) uses: >- - zircote/.github/.github/workflows/sign-and-attest.yml@740cb8efb57af0187f88e9b4f939355b871a5895 + zircote/.github/.github/workflows/sign-and-attest.yml@5a805176eb4f3f22cba7bb0a25d46dc7306872e3 with: image-name: ghcr.io/${{ github.repository }} image-digest: ${{ needs.docker.outputs.image-digest }}