chore(deps): bump the dependencies group with 6 updates (#272)

dependabot[bot] · web-flow · commit b2d1773fc69f · 2026-03-20T15:29:56.000-05:00
Signed-off-by: dependabot[bot] &lt;support@github.com&gt;
Co-authored-by: dependabot[bot] &lt;49699333+dependabot[bot]@users.noreply.github.com&gt;
diff --git a/.github/workflows/auto-labeler.yml b/.github/workflows/auto-labeler.yml
@@ -11,7 +11,7 @@ jobs:
     permissions:
       contents: read
       pull-requests: write
-    uses: github-community-projects/ospo-reusable-workflows/.github/workflows/auto-labeler.yaml@6381f5d691a1ecf7d80126b0393a803224afd9ba
+    uses: github-community-projects/ospo-reusable-workflows/.github/workflows/auto-labeler.yaml@a0cf79bd8756e0a9c1555bf4975eae7ce7a8e8dc
     with:
       config-name: release-drafter.yml
     secrets:
diff --git a/.github/workflows/pr-title.yml b/.github/workflows/pr-title.yml
@@ -11,6 +11,6 @@ jobs:
       contents: read
       pull-requests: read
       statuses: write
-    uses: github-community-projects/ospo-reusable-workflows/.github/workflows/pr-title.yaml@6381f5d691a1ecf7d80126b0393a803224afd9ba
+    uses: github-community-projects/ospo-reusable-workflows/.github/workflows/pr-title.yaml@a0cf79bd8756e0a9c1555bf4975eae7ce7a8e8dc
     secrets:
       github-token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -10,7 +10,7 @@ jobs:
     permissions:
       contents: write
       pull-requests: read
-    uses: github-community-projects/ospo-reusable-workflows/.github/workflows/release.yaml@6381f5d691a1ecf7d80126b0393a803224afd9ba
+    uses: github-community-projects/ospo-reusable-workflows/.github/workflows/release.yaml@a0cf79bd8756e0a9c1555bf4975eae7ce7a8e8dc
     with:
       publish: true
       release-config-name: release-drafter.yml
@@ -23,7 +23,7 @@ jobs:
       packages: write
       id-token: write
       attestations: write
-    uses: github-community-projects/ospo-reusable-workflows/.github/workflows/release-image.yaml@6381f5d691a1ecf7d80126b0393a803224afd9ba
+    uses: github-community-projects/ospo-reusable-workflows/.github/workflows/release-image.yaml@a0cf79bd8756e0a9c1555bf4975eae7ce7a8e8dc
     with:
       image-name: ${{ github.repository }}
       full-tag: ${{ needs.release.outputs.full-tag }}
@@ -53,7 +53,7 @@ jobs:
         with:
           go-version: 1.23.4
       - name: Install Syft
-        uses: anchore/sbom-action/download-syft@57aae528053a48a3f6235f2d9461b05fbcb7366d
+        uses: anchore/sbom-action/download-syft@e22c389904149dbc22b58101806040fa8d37a610
         with:
           syft-version: v1.33.0
       - name: Run GoReleaser
@@ -93,7 +93,7 @@ jobs:
           name: dist
           path: dist
       - name: Attest SBOM
-        uses: actions/attest-sbom@07e74fc4e78d1aad915e867f9a094073a9f71527
+        uses: actions/attest-sbom@c604332985a26aa8cf1bdc465b92731239ec6b9e
         with:
           subject-path: "${{ matrix.archive }}"
           sbom-path: "${{ matrix.sbom }}"
