Closed eriknordmark closed 1 week ago
If we build without network in the build.yml and use ADD in the dockerfile then the source we pull down gets added to the SBoM.
Turned out that pkg/kdump was not using that approach.
If we build without network in the build.yml and use ADD in the dockerfile then the source we pull down gets added to the SBoM.
Turned out that pkg/kdump was not using that approach.