Merge pull request #2983 from adobe/dependabot/github_actions/github-… #352

	name: "SBOM Generator"

	on:
	push:
	branches: [ main ]

	concurrency:
	group: sbom-${{ github.ref }}
	cancel-in-progress: ${{ github.ref_name != 'main' }}

	# Declare default permissions as read only.
	permissions: read-all

	jobs:
	build:
	runs-on: ubuntu-latest
	steps:
	- name: Harden Runner
	uses: step-security/harden-runner@a90bcbc6539c36a85cdfeb73f7e2f433735f215b # v2.15.0
	with:
	egress-policy: audit
	- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
	with:
	fetch-depth: 0
	- uses: advanced-security/sbom-generator-action@6fe43abf522b2e7a19bc769aec1e6c848614b517 # v0.0.2
	id: sbom
	env:
	GITHUB_TOKEN: ${{ github.token }}
	- uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
	with:
	path: ${{steps.sbom.outputs.fileName }}
	name: "SBOM"

Provide feedback