chore(deps): update anchore/sbom-action digest to 57aae52

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
anchore/sbom-action (changelog)	action	digest	deef08a → 57aae52

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

📏 PR Size: 🟢 XS

Changes:

• 📁 Files changed: 1
• ➕ Additions: 1
• ➖ Deletions: 1

💡 Tips for managing PR size

• XS/Small: Easy to review ✅
• Medium: Consider breaking down if possible
• Large/XL: Please split into smaller PRs for easier review

Smaller PRs are easier to review, test, and merge!

---

This comment updates automatically when the PR changes.

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
actions/anchore/sbom-action	57aae528053a48a3f6235f2d9461b05fbcb7366d	🟢 7.9	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Maintained 🟢 10 30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Binary-Artifacts 🟢 9 binaries present in source code Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Pinned-Dependencies 🟢 7 dependency not pinned by hash detected -- score normalized to 7 Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md Signed-Releases ⚠️ -1 no releases found Security-Policy 🟢 10 security policy file detected Packaging 🟢 10 packaging workflow detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0

Scanned Files

• .github/workflows/sbom.yml

[github-actions]

📊 Test Coverage Report

PR: #191
Commit: 820ce7d

Coverage Summary

Coverage data will be displayed here after test execution.

---

This comment is automatically updated by the PR Comment workflow.

[github-actions]

📊 Test Coverage Report

PR: #191
Commit: 77a1cc5

Coverage Summary

Coverage data will be displayed here after test execution.

---

This comment is automatically updated by the PR Comment workflow.

[kody-ai]

Kody Review Complete

Great news! 🎉
No issues were found that match your current review configurations.

Keep up the excellent work! 🚀

Kody Guide: Usage and Configuration

Interacting with Kody

• Request a Review: Ask Kody to review your PR manually by adding a comment with the @kody start-review command at the root of your PR.

• Validate Business Logic: Ask Kody to validate your code against business rules by adding a comment with the @kody -v business-logic command.

• Provide Feedback: Help Kody learn and improve by reacting to its comments with a 👍 for helpful suggestions or a 👎 if improvements are needed.

Current Kody Configuration

Review Options

The following review options are enabled or disabled:

Options	Enabled
Bug	✅
Performance	✅
Security	✅
Cross File	✅
Business Logic	✅

Access your configuration settings here.

​

[github-actions]

📊 Test Coverage Report

PR: #191
Commit: c29813b

Coverage Summary

Coverage data will be displayed here after test execution.

---

This comment is automatically updated by the PR Comment workflow.