Bump actions/attest-sbom from 2.4.0 to 4.1.0

[dependabot]

Bumps actions/attest-sbom from 2.4.0 to 4.1.0.

Release notes

Sourced from actions/attest-sbom's releases.

v4.1.0

[!WARNING] As of version 4.0.0 this action is being deprecated in favor of actions/attest. actions/attest-sbom will continue to function as a wrapper on top of actions/attest for some period of time, but applications should make plans to migrate.

All of the existing action inputs are compatible with the actions/attest interface.

What's Changed

• Update RELEASE.md docs by @​bdehamer in actions/attest-sbom#254
• Bump actions/attest from 4.0.0 to 4.1.0 in the actions-minor group by @​dependabot[bot] in actions/attest-sbom#255
  • Bump @actions/attest from 3.0.0 to 3.1.0 by @​bdehamer in actions/attest#362
  • Bump @actions/attest from 3.1.0 to 3.2.0 by @​bdehamer in actions/attest#365
  • Add new subject-version input for inclusion in storage record by @​bdehamer in actions/attest#364
  • Add storage record content to README by @​bdehamer in actions/attest#366

Full Changelog: actions/attest-sbom@v4.0.0...v4.1.0

v4.0.0

[!WARNING] As of version 4.0.0 this action is being deprecated in favor of actions/attest. actions/attest-sbom will continue to function as a wrapper on top of actions/attest for some period of time, but applications should make plans to migrate.

All of the existing action inputs are compatible with the actions/attest interface.

What's Changed

• Prepare v4 release by @​bdehamer in actions/attest-sbom#253

Full Changelog: actions/attest-sbom@v3...v4.0.0

v3.0.0

What's Changed

• Adjust node max-http-header-size setting by @​bdehamer in actions/attest-sbom#201
• Bump actions/attest from v2.4.0 to v3.0.0 by @​bdehamer in actions/attest-sbom#202
  • Bump runtime to node24
  • Improved checksum parsing
• Bump attest-sbom/predicate to v2.0.0 by @​bdehamer in actions/attest-sbom#206
  • Bump predicate runtime to node24 by @​bdehamer in actions/attest-sbom#204

⚠️ Minimum Compatible Runner Version

v2.327.1 Release Notes

Make sure your runner is updated to this version or newer to use this release.

Full Changelog: actions/attest-sbom@v2.4.0...v3.0.0

Commits

• c604332 Bump actions/attest from 4.0.0 to 4.1.0 in the actions-minor group (#255)
• f18f83a update RELEASE.md docs (#254)
• 07e74fc perpare v4 release (#253)
• b74e951 Bump the actions-minor group with 2 updates (#247)
• 7d9b9d6 Bump the npm-development group across 1 directory with 4 updates (#245)
• 35d5f43 Bump @​actions/core from 2.0.1 to 2.0.2 in the npm-production group (#243)
• 876bb5f Bump the actions-minor group across 1 directory with 3 updates (#246)
• 6cf30ca Bump the npm-development group with 2 updates (#241)
• e395115 Bump the actions-minor group with 2 updates (#239)
• afc801d Bump the npm-development group with 3 updates (#240)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)