chore(deps): bump actions/attest from 3.0.0 to 4.1.0

[dependabot]

Bumps actions/attest from 3.0.0 to 4.1.0.

Release notes

Sourced from actions/attest's releases.

v4.1.0

What's Changed

• Bump @actions/attest from 3.0.0 to 3.1.0 by @​bdehamer in actions/attest#362
• Bump @actions/attest from 3.1.0 to 3.2.0 by @​bdehamer in actions/attest#365
• Add new subject-version input for inclusion in storage record by @​bdehamer in actions/attest#364
• Add storage record content to README by @​bdehamer in actions/attest#366

Full Changelog: actions/attest@v4.0.0...v4.1.0

v4.0.0

All of the capabilities of actions/attest-build-provenance, and actions/attest-sbom have now been folded into actions/attest.

What's Changed

• Bump @​actions/core from 2.0.1 to 2.0.2 in the npm-production group by @​dependabot[bot] in actions/attest#323
• Bump tar from 7.4.3 to 7.5.6 by @​dependabot[bot] in actions/attest#333
• Bump @​actions/github from 6.0.1 to 7.0.0 by @​dependabot[bot] in actions/attest#324
• Bump @​actions/attest from 2.1.0 to 2.2.1 by @​dependabot[bot] in actions/attest#325
• Bump tar from 7.4.3 to 7.5.7 by @​dependabot[bot] in actions/attest#337
• Bump @​isaacs/brace-expansion from 5.0.0 to 5.0.1 by @​dependabot[bot] in actions/attest#342
• Consolidate attestation actions by @​bdehamer in actions/attest#346
• ESM Conversion by @​bdehamer in actions/attest#347
• Test suite refactor by @​bdehamer in actions/attest#356
• Bump tar from 7.5.7 to 7.5.9 by @​dependabot[bot] in actions/attest#354
• Bump version in package.json to v4.0.0 by @​bdehamer in actions/attest#360

Full Changelog: actions/attest@v3.2.0...v4.0.0

v3.2.0

What's Changed

• Bump the npm-development group with 3 updates by @​dependabot[bot] in actions/attest#320
• Validate repository org-ownership before storage record creation by @​malancas in actions/attest#328
• Update version to 3.2.0 by @​malancas in actions/attest#334

Full Changelog: actions/attest@v3.1.0...v3.2.0

v3.1.0

What's Changed

• Bump @​actions/attest from 1.6.0 to 2.0.0 by @​dependabot[bot] in actions/attest#299
• Bump @​actions/core from 1.11.1 to 2.0.1 by @​dependabot[bot] in actions/attest#318
• Create Artifact Metadata Storage Record on registry push by @​malancas in actions/attest#313

New Contributors

• @​malancas made their first contribution in actions/attest#313

Full Changelog: actions/attest@v3...v3.1.0

Commits

• 59d8942 add storage record content to README (#366)
• ec072a1 add new subject-version input (#364)
• 8b290b8 bump @​actions/attest from 3.1.0 to 3.2.0 (#365)
• 35cfe24 bump @​actions/attest from 3.0.0 to 3.1.0 (#362)
• c32b4b8 bump version in package.json to v4.0.0 (#360)
• 1e73be1 Bump typescript-eslint in the npm-development group (#358)
• e1345cb Bump the npm-development group across 1 directory with 3 updates (#357)
• 09cd5f6 Bump tar from 7.5.7 to 7.5.9 (#354)
• 19ad753 test suite re-write (#356)
• 7d7ff44 ESM Conversion (#347)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)