search

in-toto / witness

Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact provenance.
https://witness.dev
Apache License 2.0
415 stars 59 forks source link

Added generation of SBOM #451

Closed Yaxhveer closed 6 months ago

Yaxhveer commented 6 months ago

What this PR does / why we need it

Added sbom generation of artifacts using syft

Which issue(s) this PR fixes (optional)

Fixes #437

Acceptance Criteria Met

Special notes for your reviewer:

netlify[bot] commented 6 months ago

Deploy Preview for witness-project ready!

Name Link
Latest commit 892e4e7424565d597f8ec068ecdcf22258fd6cb7
Latest deploy log https://app.netlify.com/sites/witness-project/deploys/665aab857eeb600008cfaac6
Deploy Preview https://deploy-preview-451--witness-project.netlify.app
Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site configuration.

Yaxhveer commented 6 months ago

@jkjell PTAL!