ci(deps): bump microsoft.sbom.dotnettool from 2.2.5 to 2.2.6

[dependabot[bot]]

Bumps microsoft.sbom.dotnettool from 2.2.5 to 2.2.6.

Release notes

Sourced from microsoft.sbom.dotnettool's releases.

v2.2.6

⚙️ Changes

• Add redact documentation by @​sfoslund (#582)
• Add redaction workflow logic by @​sfoslund (#581)
• Add Validate Format functionality by @​alisonlomaka (#580)
• Add validate-format verb with placeholder for future validation by @​alisonlomaka (#577)
• Tweaks to some analyzer rules by @​alisonlomaka (#576)
• Add redact verb to CLI by @​sfoslund (#575)
• Loosen constraints on SBOM/SPDX validation by @​alisonlomaka (#572)
• Remove an unneeded comment (formatted as a heading) in documentation by @​Jeanot-Zubler (#533)
• Clarify validate -o argument description by @​alisonlomaka (#567)
• Explicitly install .NET 6.0 and 8.0 in CI by @​sfoslund (#568)

Commits

• 0b4db48 Add redact documentation (#582)
• b18bb46 Add redaction workflow logic (#581)
• b005f3f Add Validate Format functionality (#580)
• 1d832e0 Add validate-format verb with placeholder for future validation (#577)
• 29bc8fb Change SA1116, 1010, and 1024 to suggestions so they will no longer break com...
• 4eddb7f Add redact verb to CLI (#575)
• 111282b Loosen constraints on SBOM/SPDX validation (#572)
• 8141070 Remove an unneeded comment (formatted as a heading) in documentation (#533)
• 53f7508 Clarify the README description of validate argument -o; this argument require...
• 947bb26 Explicitly install .NET 6.0 and 8.0 in CI (#568)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)