Bump anchore/scan-action from 3.3.6 to 3.3.8

[dependabot]

Bumps anchore/scan-action from 3.3.6 to 3.3.8.

Release notes

Sourced from anchore/scan-action's releases.

v3.3.8

New in scan-action v3.3.8

• Update Grype to v0.73.4 (#252) [anchore-actions-token-generator]
• Add input grype-version (#228) [ViacheslavKudinov]
• Chore: upgrade and pin all GH actions (#250) [willmurphyscode]

v3.3.7

New in scan-action v3.3.7

• chore: address test flakes (#249) [willmurphyscode]
• chore(deps): update Grype to v0.73.3 (#248) [anchore-actions-token-generator]
• chore: add manual trigger to test workflow (#247) [willmurphyscode]
• fix: updated semver version (#241) [gicappa]
• chore(docs): update docker related actions to avoid warnings in workflow (#240) [kuzm1ch]
• chore: add new exception for audit (#235) [spiffcs]
• chore(deps): update Grype to v0.63.1 (#233) [anchore-actions-token-generator]
• Add by-cve option (#229) [too-gee]
• add oss community board auto-add workflow (#231) [wagoodman]

🐛 Bug Fixes

• chore(deps): update Grype to v0.73.2; remove snapshot tests (#236) [anchore-actions-token-generator]

Commits

• 896d5f4 chore(deps): update Grype to v0.73.4 (#252)
• 8946e9f chore: newline on package-lock.json
• 69f27a5 [feature] Add input grype-version (#228)
• 557686c chore: upgrade and pin all GH actions (#250)
• 62370b5 chore: address test flakes (#249)
• eeb941f chore(deps): update Grype to v0.73.3 (#248)
• ba0a911 chore(deps): update Grype to v0.73.2; remove snapshot tests (#236)
• 1ee3eaf chore: add manual trigger to test workflow (#247)
• 6decf31 fix: updated semver version (#241)
• 966ad43 chore(docs): update docker related actions to avoid warnings in workflow (#240)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)