Bump anchore/scan-action from 5.3.0 to 6.0.0

[dependabot]

Bumps anchore/scan-action from 5.3.0 to 6.0.0.

Release notes

Sourced from anchore/scan-action's releases.

v6.0.0

New in scan-action v6.0.0

Major Change Note

• feat: add output-file option, default to random directory output in temp (#346) [kzantow]

Check the above PR for details on how migrating might affect current configurations and usages

Other Changes

• chore(deps): update Grype to v0.86.1 (#416) [anchore-actions-token-generator]
• feat: add support for cyclonedx and cyclonedx-json output-formats (#396) [ps-e]
• chore(deps): bump @​actions/cache from 3.3.0 to 4.0.0 (#412) [dependabot]
• chore(deps): update Grype to v0.86.0 (#413) [anchore-actions-token-generator]

Commits

• abae793 chore(deps): update Grype to v0.86.1 (#416)
• f02232c chore: exclude dev-deps from release drafter (#415)
• 763018a feat: add support for cyclonedx and cyclonedx-json output-formats (#396)
• e374579 chore(deps-dev): bump lint-staged from 15.2.10 to 15.2.11 (#414)
• e90bc67 chore(deps): bump @​actions/cache from 3.3.0 to 4.0.0 (#412)
• 028cd8f feat: add output-file option, default to random directory output in temp (#346)
• 6e00665 chore(deps): update Grype to v0.86.0 (#413)
• 15fee38 chore(deps-dev): bump eslint from 9.15.0 to 9.16.0 (#410)
• c4c24ec chore(deps-dev): bump prettier from 3.3.3 to 3.4.2 (#411)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 100.00%. Comparing base (e291c1f) to head (6e08201).
Report is 1 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff            @@
##              main      #648   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files            8         8           
  Lines          151       151           
  Branches        15        15           
=========================================
  Hits           151       151           

Flag	Coverage Δ
python-3.10	100.00% <ø> (ø)
python-3.11	100.00% <ø> (ø)
python-3.12	100.00% <ø> (ø)
python-3.13	100.00% <ø> (ø)
python-3.9	100.00% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[github-actions]

Test Results

  5 files  ±0    5 suites  ±0   22s ⏱️ -1s
 36 tests ±0   36 ✅ ±0  0 💤 ±0  0 ❌ ±0 
180 runs  ±0  180 ✅ ±0  0 💤 ±0  0 ❌ ±0 

Results for commit 6e08201. ± Comparison against base commit e291c1f.

♻️ This comment has been updated with latest results.