Version updated for anchore/sbom-action to version v0.17.8. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 1,676 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Changes in v0.17.8 chore(deps): update Syft to v1.17.0 (#507) [anchore-actions-token-generator]

Version updated for anchore/scan-action to version v5.3.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 6,664 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes New in scan-action v5.3.0 chore(deps): update Grype to v0.85.0 (#408) [anchore-actions-token-generator] chore(deps-dev): bump @vercel/ncc from 0.38.2 to 0.38.3 (#406) [dependabot] chore(deps-dev): bump eslint from 9.14.0 to 9.15.0 (#405) [dependabot] chore(deps-dev): bump husky from 9.

Version updated for anchore/sbom-action to version v0.17.6. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 1,626 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Changes in v0.17.6 chore(deps): update Syft to v1.15.0 (#505) [anchore-actions-token-generator] chore(deps): bump actions/checkout from 4.2.1 to 4.2.2 (#504) [dependabot]

Version updated for anchore/scan-action to version v5.2.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 6,568 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes New in scan-action v5.2.0 chore(deps): update Grype to v0.83.0 (#398) [anchore-actions-token-generator] chore(deps): bump actions/checkout from 4.2.1 to 4.2.2 (#394) [dependabot] chore(deps): bump actions/setup-node from 4.0.4 to 4.1.0 (#395) [dependabot]

Version updated for anchore/sbom-action to version v0.17.5. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 1,601 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Changes in v0.17.5 chore(deps): update Syft to v1.14.2 (#503) [anchore-actions-token-generator]

Version updated for anchore/scan-action to version v5.1.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 6,524 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes New in scan-action v5.1.0 chore(deps): update Grype to v0.82.2 (#393) [anchore-actions-token-generator] chore(deps-dev): bump eslint from 9.12.0 to 9.13.0 (#392) [dependabot] chore(deps-dev): bump tslib from 2.7.0 to 2.8.0 (#391) [dependabot]

Version updated for anchore/sbom-action to version v0.17.4. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 1,567 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Changes in v0.17.4 chore(deps): update Syft to v1.14.1 (#502) [anchore-actions-token-generator]

Version updated for anchore/scan-action to version v5.0.1. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 6,492 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes New in scan-action v5.0.1 chore(deps): update Grype to v0.82.1 (#389) [anchore-actions-token-generator]

Version updated for anchore/sbom-action to version v0.17.3. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 1,549 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Changes in v0.17.3 chore(deps): update Syft to v1.14.0 (#498) [anchore-actions-token-generator]

Version updated for anchore/scan-action to version v5.0.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 6,464 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes New in scan-action v5.0.0 chore(deps): update Grype to v0.82.0 (#383) [anchore-actions-token-generator] 🚀 Features feat: short-lived grype-db cache (#348) [kzantow] Note: with this release grype is no longer installed on $PATH. We suspect the changes here could break a number of users of the action who have learned to expect Grype be installed on $PATH.

Version updated for anchore/sbom-action to version v0.17.2. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 1,405 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Changes in v0.17.2 Update Syft to v1.11.1 (#485) [anchore-actions-token-generator]

Version updated for anchore/scan-action to version v4.1.2. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 6,227 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes New in scan-action v4.1.2 Update Grype to v0.80.0 (#358) [anchore-actions-token-generator]

Version updated for anchore/sbom-action to version v0.17.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 1,319 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Changes in v0.17.0 chore(deps): update Syft to v1.9.0 (#479) [anchore-actions-token-generator] chore(deps): bump actions/checkout from 4.1.6 to 4.1.7 (#474) [dependabot] chore(deps): bump peter-evans/create-pull-request from 6.0.5 to 6.1.0 (#475) [dependabot] chore: serialize tests to prevent install race (#478) [willmurphyscode]

Version updated for anchore/scan-action to version v4.1.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 6,046 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes New in scan-action v4.1.0 chore(deps): update Grype to v0.79.3 (#341) [anchore-actions-token-generator] chore(deps-dev): bump tslib from 2.6.2 to 2.6.3 (#325) [dependabot] chore(deps-dev): bump prettier from 3.3.0 to 3.3.2 (#327) [dependabot] chore(deps): bump actions/checkout from 4.

Version updated for anchore/scan-action to version v4.0.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 6,027 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes New in scan-action v4.0.0 Update Grype to v0.79.2 (#338) [anchore-actions-token-generator] Download Grype on Windows (#336) [willmurphyscode] (#315) [kzantow] Bump Node to v20 (#295) [ViacheslavKudinov]

Version updated for anchore/sbom-action to version v0.16.1. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 1,310 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Changes in v0.16.1 fix: workaround windows install issue (#477) [willmurphyscode] fix: allow users to properly use the file input over the default path value (#471) [komish] chore(deps): update Syft to v1.5.0 (#470) [anchore-actions-token-generator] docs: notes for matrix and required permissions (#469) [kzantow] chore(deps): bump actions/checkout from 4.

Version updated for anchore/sbom-action to version v0.16.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 1,199 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Changes in v0.16.0 Update Syft to v1.4.1 (#465) Update GitHub artifact client (#463) [kzantow]

Version updated for anchore/sbom-action to version v0.15.11. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 1,156 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Changes in v0.15.11 chore(deps): update Syft to v1.3.0 (#456) [anchore-actions-token-generator] chore: remove outdated snapshot workflow (#457) [spiffcs] fix: don’t pass in a separate env. This makes it impossible to pass env vars via the action context to syft.

Version updated for anchore/sbom-action to version v0.15.10. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 1,057 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Changes in v0.15.10 Update Syft to v1.1.0 (#454) Bump Node to v20 on download-syft/publish-sbom actions (#448) [ViacheslavKudinov]

Version updated for anchore/sbom-action to version v0.15.9. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 1,026 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Changes in v0.15.9 reduce syft debug level (#446) [kzantow] update Syft to v0.105.0 (#442) [anchore-actions-token-generator]

Version updated for anchore/sbom-action to version v0.15.2. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 918 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Changes in v0.15.2 chore(deps): update Syft to v0.99.0 (#432) [anchore-actions-token-generator] chore: fix github-script invocation in update-snapshots workflow (#433) [willmurphyscode]

Version updated for anchore/scan-action to version v3.4.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 5,032 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes New in scan-action v3.4.0 chore(deps-dev): bump tslib from 2.5.0 to 2.6.2 (#258) [dependabot] chore(deps-dev): bump @vercel/ncc from 0.36.1 to 0.38.1 (#261) [dependabot] chore(deps): update Grype to v0.73.5 (#264) [anchore-actions-token-generator] Add support for the --vex flag (#254) [ferozsalam]

Version updated for anchore/sbom-action to version v0.15.1. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 880 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Changes in v0.15.1 chore(deps): update Syft to v0.98.0 (#431) [anchore-actions-token-generator] Add config input (#430) [eyakubovich] chore: pin and upgrade gh actions (#429) [willmurphyscode]

Version updated for anchore/scan-action to version v3.3.8. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 4,937 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes New in scan-action v3.3.8 Update Grype to v0.73.4 (#252) [anchore-actions-token-generator] Add input grype-version (#228) [ViacheslavKudinov] Chore: upgrade and pin all GH actions (#250) [willmurphyscode]

Version updated for anchore/sbom-action to version v0.15.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 859 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Changes in v0.14.4 Breaking Changes Previously, running on Windows required WSL. Now, running on Windows expects to be run on native windows (#426) [willmurphyscode]. Other Changes pin and upgrade actions/checkout (#428) [willmurphyscode] chore(deps): update Syft to v0.

Version updated for anchore/scan-action to version v3.3.7. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 4,880 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes New in scan-action v3.3.7 chore: address test flakes (#249) [willmurphyscode] chore(deps): update Grype to v0.73.3 (#248) [anchore-actions-token-generator] chore: add manual trigger to test workflow (#247) [willmurphyscode] fix: updated semver version (#241) [gicappa] chore(docs): update docker related actions to avoid warnings in workflow (#240) [kuzm1ch] chore: add new exception for audit (#235) [spiffcs] chore(deps): update Grype to v0.