From 379d456658657cbfbb579931b357d4ed6ca3add0 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 10 Mar 2025 16:10:28 +0000
Subject: [PATCH] chore(deps): bump Kong/public-shared-actions

Bumps [Kong/public-shared-actions](https://github.com/kong/public-shared-actions) from c954e2df2ca2bbc0a160dd5c8bd504be064c5702 to 428b7594b70fc76d6929d769ac937169ac87f576.
- [Release notes](https://github.com/kong/public-shared-actions/releases)
- [Commits](https://github.com/kong/public-shared-actions/compare/c954e2df2ca2bbc0a160dd5c8bd504be064c5702...428b7594b70fc76d6929d769ac937169ac87f576)

---
updated-dependencies:
- dependency-name: Kong/public-shared-actions
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/_build_publish.yaml        | 6 +++---
 .github/workflows/build-test-distribute.yaml | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/_build_publish.yaml b/.github/workflows/_build_publish.yaml
index 12fae894a3ab..088e0a42cb1b 100644
--- a/.github/workflows/_build_publish.yaml
+++ b/.github/workflows/_build_publish.yaml
@@ -134,7 +134,7 @@ jobs:
           make test/container-structure/${{ matrix.image }}
       - name: scan amd64 image
         id: scan_image-amd64
-        uses: Kong/public-shared-actions/security-actions/scan-docker-image@c954e2df2ca2bbc0a160dd5c8bd504be064c5702 # v4.0.1
+        uses: Kong/public-shared-actions/security-actions/scan-docker-image@428b7594b70fc76d6929d769ac937169ac87f576 # v4.0.1
         with:
           asset_prefix: image_${{ matrix.image }}-amd64
           image: ./build/docker/${{ matrix.image }}-amd64.tar
@@ -143,7 +143,7 @@ jobs:
       - name: scan arm64 image
         id: scan_image-arm64
         if: ${{ fromJSON(inputs.FULL_MATRIX) }}
-        uses: Kong/public-shared-actions/security-actions/scan-docker-image@c954e2df2ca2bbc0a160dd5c8bd504be064c5702 # v4.0.1
+        uses: Kong/public-shared-actions/security-actions/scan-docker-image@428b7594b70fc76d6929d769ac937169ac87f576 # v4.0.1
         with:
           asset_prefix: image_${{ matrix.image }}-arm64
           image: ./build/docker/${{ matrix.image }}-arm64.tar
@@ -192,7 +192,7 @@ jobs:
       - name: sign image
         if: ${{ fromJSON(inputs.ALLOW_PUSH) }}
         id: sign
-        uses: Kong/public-shared-actions/security-actions/sign-docker-image@c954e2df2ca2bbc0a160dd5c8bd504be064c5702 # v4.0.1
+        uses: Kong/public-shared-actions/security-actions/sign-docker-image@428b7594b70fc76d6929d769ac937169ac87f576 # v4.0.1
         with:
           image_digest: ${{ steps.image_digest.outputs.digest }}
           tags: ${{ steps.image_meta.outputs.image }}
diff --git a/.github/workflows/build-test-distribute.yaml b/.github/workflows/build-test-distribute.yaml
index fb7980dd334d..e22005cdf5dd 100644
--- a/.github/workflows/build-test-distribute.yaml
+++ b/.github/workflows/build-test-distribute.yaml
@@ -90,7 +90,7 @@ jobs:
           make clean/build
       - name: "Generate SBOM and CVE report (Software Composition Analysis)"
         id: sca-project
-        uses: Kong/public-shared-actions/security-actions/sca@c954e2df2ca2bbc0a160dd5c8bd504be064c5702 # v4.0.1
+        uses: Kong/public-shared-actions/security-actions/sca@428b7594b70fc76d6929d769ac937169ac87f576 # v4.0.1
         env:
           SYFT_SOURCE_NAME: ${{ github.repository }}
           SYFT_SOURCE_VERSION: ${{ steps.metadata.outputs.version }}