chore(deps): bump anchore/sbom-action from 0.21.1 to 0.22.0

dependabot[bot] · web-flow · commit c4e42b519c45 · 2026-01-29T20:34:34.000Z
Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from 0.21.1 to 0.22.0. - [Release notes](https://github.com/anchore/sbom-action/releases) - [Changelog](https://github.com/anchore/sbom-action/blob/main/RELEASE.md) - [Commits](anchore/sbom-action@0b82b0b...62ad528) --- updated-dependencies: - dependency-name: anchore/sbom-action dependency-version: 0.22.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
diff --git a/.github/workflows/sbom.yml b/.github/workflows/sbom.yml
@@ -29,7 +29,7 @@ jobs:
         uses: sigstore/cosign-installer@faadad0cce49287aee09b3a48701e75088a2c6ad # v4.0.0
 
       - name: Install the syft command
-        uses: anchore/sbom-action/download-syft@0b82b0b1a22399a1c542d4d656f70cd903571b5c # v0.21.1
+        uses: anchore/sbom-action/download-syft@deef08a0db64bfad603422135db61477b16cef56 # v0.22.1
 
       - name: Install the crane command
         uses: IAreKyleW00t/crane-installer@6a96c393da806b566e726f04f184445d8d7d83f5 # v4.0.7
