From 6a96f2380323dcbf56e81378a02fa2a8da59bc29 Mon Sep 17 00:00:00 2001
From: Robert Waffen <rw@betadots.de>
Date: Fri, 20 Sep 2024 12:11:07 +0200
Subject: [PATCH] test sbom

Signed-off-by: Robert Waffen <rw@betadots.de>
---
 .github/workflows/ci.yml   | 4 +---
 .github/workflows/main.yml | 2 +-
 2 files changed, 2 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 0b743c2..cfc1b3b 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -32,9 +32,7 @@ jobs:
       security-events: write
     needs: setup-matrix
     strategy:
-      matrix:
-        version: ${{ fromJson(needs.setup-matrix.outputs.matrix.version) }}
-        release: ${{ fromJson(needs.setup-matrix.outputs.matrix.release) }}
+      matrix: ${{ fromJson(needs.setup-matrix.outputs.matrix) }}
     steps:
       - name: Checkout repository
         uses: actions/checkout@v4
diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 14a1231..e7a70e1 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -21,7 +21,7 @@ jobs:
         run: echo "tag=${TAG:1}" >> $GITHUB_OUTPUT
 
       - name: Build container
-        uses: rwaffen/gha-build-and-publish-a-container@attest
+        uses: rwaffen/gha-build-and-publish-a-container@sbom
         with:
           registry_password: ${{ secrets.GITHUB_TOKEN }}
           attest: 'true'