search

SAP / jenkins-library

Jenkins shared library for Continuous Delivery pipelines.
https://www.project-piper.io
Apache License 2.0
769 stars 582 forks source link

feat(cnbbuild): cnbbuild collects SBOM of the produced images #4934

Closed c0d1ngm0nk3y closed 1 month ago

c0d1ngm0nk3y commented 1 month ago

Based on https://github.com/SAP/jenkins-library/pull/4933

In case of images built with cloud native buildpacks, creating the sbom is only about collecting the sboms already on the image.

c0d1ngm0nk3y commented 1 month ago

/it

c0d1ngm0nk3y commented 1 month ago

The "unit tests" work locally. Flake? :(

c0d1ngm0nk3y commented 1 month ago

/it

sonarcloud[bot] commented 1 month ago

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
No data about Duplication

See analysis details on SonarCloud

pbusko commented 1 month ago

/it-go