Closed brenodt closed 2 months ago
This PR introduces SBOM Generation as a job in the pipelines, alongside a standalone generation workflow, which can be triggered by using the tag generate-sbom.
generate-sbom
It also stores the SBOMs as assets in the job, the latest of which can be accessed here: https://app.circleci.com/pipelines/github/qaul/qaul.net/1346/workflows/1f84f64c-d709-427a-980b-d74001b53c3c/jobs/4526/artifacts
I manually updated the generated SBOMs in the latest release. On the next one, it shall be done alongside the CD pipeline.
Description
This PR introduces SBOM Generation as a job in the pipelines, alongside a standalone generation workflow, which can be triggered by using the tag
generate-sbom.It also stores the SBOMs as assets in the job, the latest of which can be accessed here: https://app.circleci.com/pipelines/github/qaul/qaul.net/1346/workflows/1f84f64c-d709-427a-980b-d74001b53c3c/jobs/4526/artifacts
I manually updated the generated SBOMs in the latest release. On the next one, it shall be done alongside the CD pipeline.