chore(deps): bump the actions group with 4 updates

dependabot[bot] · poiana · commit 6e4de4c38d61 · 2026-02-05T23:40:56.000+01:00
Bumps the actions group with 4 updates: [helm/kind-action](https://github.com/helm/kind-action), [slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml](https://github.com/slsa-framework/slsa-github-generator), [slsa-framework/slsa-verifier](https://github.com/slsa-framework/slsa-verifier) and [slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml](https://github.com/slsa-framework/slsa-github-generator). Updates `helm/kind-action` from 1.8.0 to 1.13.0 - [Release notes](https://github.com/helm/kind-action/releases) - [Commits](helm/kind-action@dda0770...92086f6) Updates `slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml` from 2.0.0 to 2.1.0 - [Release notes](https://github.com/slsa-framework/slsa-github-generator/releases) - [Changelog](https://github.com/slsa-framework/slsa-github-generator/blob/main/CHANGELOG.md) - [Commits](slsa-framework/slsa-github-generator@v2.0.0...v2.1.0) Updates `slsa-framework/slsa-verifier` from 2.5.1 to 2.7.1 - [Release notes](https://github.com/slsa-framework/slsa-verifier/releases) - [Changelog](https://github.com/slsa-framework/slsa-verifier/blob/main/RELEASE.md) - [Commits](slsa-framework/slsa-verifier@v2.5.1...v2.7.1) Updates `slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml` from 2.0.0 to 2.1.0 - [Release notes](https://github.com/slsa-framework/slsa-github-generator/releases) - [Changelog](https://github.com/slsa-framework/slsa-github-generator/blob/main/CHANGELOG.md) - [Commits](slsa-framework/slsa-github-generator@v2.0.0...v2.1.0) --- updated-dependencies: - dependency-name: helm/kind-action dependency-version: 1.13.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions - dependency-name: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml dependency-version: 2.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions - dependency-name: slsa-framework/slsa-verifier dependency-version: 2.7.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions - dependency-name: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml dependency-version: 2.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions ... Signed-off-by: dependabot[bot] <support@github.com>
diff --git a/.github/workflows/integration.yaml b/.github/workflows/integration.yaml
@@ -96,7 +96,7 @@ jobs:
         run: go install github.com/onsi/ginkgo/v2/ginkgo@v2.11.0 #Make sure that it is at the same version as the library used in the project.
 
       - name: Create KIND Cluster
-        uses: helm/kind-action@dda0770415bac9fc20092cacbc54aa298604d140 # v1.8.0
+        uses: helm/kind-action@92086f6be054225fa813e0a4b13787fc9088faab # v1.13.0
         with:
           config: ./test/e2e/kind/config.yaml
 
diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
@@ -53,7 +53,7 @@ jobs:
       actions: read # To read the workflow path.
       id-token: write # To sign the provenance.
       contents: write # To add assets to a release.
-    uses: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v2.0.0
+    uses: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v2.1.0
     with:
       base64-subjects: "${{ needs.goreleaser.outputs.hashes }}"
       upload-assets: true # upload to a new release
@@ -64,7 +64,7 @@ jobs:
     permissions: read-all
     steps:
       - name: Install the verifier
-        uses: slsa-framework/slsa-verifier/actions/installer@v2.5.1
+        uses: slsa-framework/slsa-verifier/actions/installer@v2.7.1
 
       - name: Download assets
         env:
@@ -125,7 +125,7 @@ jobs:
       actions: read # for detecting the Github Actions environment.
       id-token: write # for creating OIDC tokens for signing.
       packages: write # for uploading attestations.
-    uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v2.0.0
+    uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v2.1.0
     with:
       image: docker.io/falcosecurity/k8s-metacollector
       # The image digest is used to prevent TOCTOU issues.
