From be769bb6e99c7fcba6d9188ad0cb0cfed79d73b4 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 23 Dec 2024 08:18:53 +0100
Subject: [PATCH] Bump the github-actions group across 1 directory with 2
 updates (#200)

Bumps the github-actions group with 2 updates in the / directory:
[actions/attest-build-provenance](https://github.com/actions/attest-build-provenance)
and
[docker/setup-buildx-action](https://github.com/docker/setup-buildx-action).
Updates `actions/attest-build-provenance` from 1.4.4 to 2.1.0
Updates `docker/setup-buildx-action` from 3.7.1 to 3.8.0
---
 .github/workflows/prerelease.yml | 4 ++--
 .github/workflows/release.yml    | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/prerelease.yml b/.github/workflows/prerelease.yml
index cbca272..f6e4f0f 100644
--- a/.github/workflows/prerelease.yml
+++ b/.github/workflows/prerelease.yml
@@ -33,12 +33,12 @@ jobs:
         name: Release
         
       - name: Generate build provenance (Distribution)
-        uses: actions/attest-build-provenance@ef244123eb79f2f7a7e75d99086184180e6d0018  # v1.4.4
+        uses: actions/attest-build-provenance@7668571508540a607bdfd90a87a560489fe372eb  # v2.1.0
         with:
           subject-path: "${{ github.workspace }}/${{ env.RELEASE_DISTRO }}"
           
       - name: Generate build provenance (Packages)
-        uses: actions/attest-build-provenance@ef244123eb79f2f7a7e75d99086184180e6d0018  # v1.4.4
+        uses: actions/attest-build-provenance@7668571508540a607bdfd90a87a560489fe372eb  # v2.1.0
         with:
           subject-path: "${{ github.workspace }}/${{ env.RELEASE_PACKAGES }}"
 
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index c3a6da5..67909b4 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -41,17 +41,17 @@ jobs:
       run: ls -al ${{ env.RELEASE_DISTRO }}
       
     - name: Generate build provenance (Distribution)
-      uses: actions/attest-build-provenance@ef244123eb79f2f7a7e75d99086184180e6d0018  # v1.4.4
+      uses: actions/attest-build-provenance@7668571508540a607bdfd90a87a560489fe372eb  # v2.1.0
       with:
         subject-path: "${{ github.workspace }}/${{ env.RELEASE_DISTRO }}"
 
     - name: Generate build provenance (Packages)
-      uses: actions/attest-build-provenance@ef244123eb79f2f7a7e75d99086184180e6d0018  # v1.4.4
+      uses: actions/attest-build-provenance@7668571508540a607bdfd90a87a560489fe372eb  # v2.1.0
       with:
         subject-path: "${{ github.workspace }}/${{ env.RELEASE_PACKAGES }}"
         
     - name: Set up Docker Buildx
-      uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 # v3.7.1
+      uses: docker/setup-buildx-action@6524bf65af31da8d45b59e8c27de4bd072b392f5 # v3.8.0
 
     - name: Log in to the Elastic Container registry
       uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0
@@ -91,7 +91,7 @@ jobs:
         labels: ${{ steps.docker-meta.outputs.labels }}
 
     - name: Attest image
-      uses: actions/attest-build-provenance@ef244123eb79f2f7a7e75d99086184180e6d0018  # v1.4.4
+      uses: actions/attest-build-provenance@7668571508540a607bdfd90a87a560489fe372eb  # v2.1.0
       continue-on-error: true # continue for now until we see it working in action
       with:
         subject-name: ${{ env.DOCKER_IMAGE_NAME }}