chore(deps): update anchore/sbom-action action to v0.17.0 (#95)

[![Mend
Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)

This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [anchore/sbom-action](https://togithub.com/anchore/sbom-action) |
action | minor | `v0.16.0` -> `v0.17.0` |

---

### Release Notes

<details>
<summary>anchore/sbom-action (anchore/sbom-action)</summary>

###
[`v0.17.0`](https://togithub.com/anchore/sbom-action/releases/tag/v0.17.0)

[Compare
Source](https://togithub.com/anchore/sbom-action/compare/v0.16.1...v0.17.0)

#### Changes in v0.17.0

- chore(deps): update Syft to v1.9.0
([#&#8203;479](https://togithub.com/anchore/sbom-action/issues/479))
\[[anchore-actions-token-generator](https://togithub.com/anchore-actions-token-generator)]
- chore(deps): bump actions/checkout from 4.1.6 to 4.1.7
([#&#8203;474](https://togithub.com/anchore/sbom-action/issues/474))
\[[dependabot](https://togithub.com/dependabot)]
- chore(deps): bump peter-evans/create-pull-request from 6.0.5 to 6.1.0
([#&#8203;475](https://togithub.com/anchore/sbom-action/issues/475))
\[[dependabot](https://togithub.com/dependabot)]
- chore: serialize tests to prevent install race
([#&#8203;478](https://togithub.com/anchore/sbom-action/issues/478))
\[[willmurphyscode](https://togithub.com/willmurphyscode)]

###
[`v0.16.1`](https://togithub.com/anchore/sbom-action/releases/tag/v0.16.1)

[Compare
Source](https://togithub.com/anchore/sbom-action/compare/v0.16.0...v0.16.1)

#### Changes in v0.16.1

- fix: workaround windows install issue
([#&#8203;477](https://togithub.com/anchore/sbom-action/issues/477))
\[[willmurphyscode](https://togithub.com/willmurphyscode)]
- fix: allow users to properly use the file input over the default path
value
([#&#8203;471](https://togithub.com/anchore/sbom-action/issues/471))
\[[komish](https://togithub.com/komish)]
- chore(deps): update Syft to v1.5.0
([#&#8203;470](https://togithub.com/anchore/sbom-action/issues/470))
\[[anchore-actions-token-generator](https://togithub.com/anchore-actions-token-generator)]
- docs: notes for matrix and required permissions
([#&#8203;469](https://togithub.com/anchore/sbom-action/issues/469))
\[[kzantow](https://togithub.com/kzantow)]
- chore(deps): bump actions/checkout from 4.1.5 to 4.1.6
([#&#8203;466](https://togithub.com/anchore/sbom-action/issues/466))
\[[dependabot](https://togithub.com/dependabot)]

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined),
Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update
again.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR was generated by [Mend
Renovate](https://www.mend.io/free-developer-tools/renovate/). View the
[repository job
log](https://developer.mend.io/github/metal-toolbox/vogelkop).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy40MjUuMSIsInVwZGF0ZWRJblZlciI6IjM3LjQzOC4wIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6W119-->

.github/workflows/goreleaser.yml

@@ -31,7 +31,7 @@ jobs:
       - name: install cosign
         uses: sigstore/cosign-installer@main
 
-      - uses: anchore/sbom-action/download-syft@v0.16.0
+      - uses: anchore/sbom-action/download-syft@v0.17.0
 
       - name: Set up QEMU
         uses: docker/setup-qemu-action@v3