From 17c68fef61778eb742f84bd9d62d1586fc45c13f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 22 Mar 2026 22:12:52 +0000
Subject: [PATCH] Bump the ci group with 2 updates

Bumps the ci group with 2 updates: [docker/github-builder/.github/workflows/build.yml](https://github.com/docker/github-builder) and [docker/scout-action](https://github.com/docker/scout-action).


Updates `docker/github-builder/.github/workflows/build.yml` from 1.2.0 to 1.4.0
- [Release notes](https://github.com/docker/github-builder/releases)
- [Commits](https://github.com/docker/github-builder/compare/1fbf7b561327a08e044298fe9684dac8d248c7d9...70313223e2665c3211b454b3fea6534624e78d64)

Updates `docker/scout-action` from 1.20.2 to 1.20.3
- [Release notes](https://github.com/docker/scout-action/releases)
- [Commits](https://github.com/docker/scout-action/compare/1128f02d1e60f339af7306e0e62b9fdc13d9fab9...8910519cee8ac046f3ee99686b0dc6654d5ba1a7)

---
updated-dependencies:
- dependency-name: docker/github-builder/.github/workflows/build.yml
  dependency-version: 1.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ci
- dependency-name: docker/scout-action
  dependency-version: 1.20.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ci
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/ci.yaml      | 4 ++--
 .github/workflows/release.yaml | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 28566fb..bfb8d03 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -28,7 +28,7 @@ jobs:
         with:
           version: latest
   test-multi-arch-build:
-    uses: docker/github-builder/.github/workflows/build.yml@1fbf7b561327a08e044298fe9684dac8d248c7d9 # v1.2.0
+    uses: docker/github-builder/.github/workflows/build.yml@70313223e2665c3211b454b3fea6534624e78d64 # v1.4.0
     if: ${{ !github.event.pull_request.head.repo.fork }}
     with:
       output: image
@@ -115,7 +115,7 @@ jobs:
         run: |
           docker images
       - name: Docker Scout Comparison between main branch and current PR branch
-        uses: docker/scout-action@1128f02d1e60f339af7306e0e62b9fdc13d9fab9 # v1.20.2
+        uses: docker/scout-action@8910519cee8ac046f3ee99686b0dc6654d5ba1a7 # v1.20.3
         with:
           command: compare
           image: local://score-radius:pr-${{ github.event.number }}
diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
index 0f2ec5b..b0c8c3b 100644
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@@ -41,7 +41,7 @@ jobs:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
           TAP_GITHUB_TOKEN: ${{ secrets.TAP_GITHUB_TOKEN }}
   release-container-image:
-    uses: docker/github-builder/.github/workflows/build.yml@1fbf7b561327a08e044298fe9684dac8d248c7d9 # v1.2.0
+    uses: docker/github-builder/.github/workflows/build.yml@70313223e2665c3211b454b3fea6534624e78d64 # v1.4.0
     permissions:
       id-token: write # to sign attestation(s) with GitHub OIDC Token
       packages: write # to push container image to ghcr