Mirrors
/
fasten-onprem
mirror of https://github.com/fastenhealth/fasten-onprem.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

rollback SBOM support.

This commit is contained in:
Jason Kulatunga 2023-10-17 10:56:38 -07:00
parent f32004498a
commit 7018c3b85a
No known key found for this signature in database
1 changed files with 13 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

26
.github/workflows/docker.yaml vendored
View File

@ -19,7 +19,7 @@ jobs:
docker: docker:
runs-on: ubuntu-latest runs-on: ubuntu-latest
permissions: permissions:
contents: write contents: read
packages: write packages: write
id-token: write id-token: write
strategy: strategy:
@ -72,15 +72,15 @@ jobs:
labels: ${{ steps.meta.outputs.labels }} labels: ${{ steps.meta.outputs.labels }}
build-args: | build-args: |
FASTEN_ENV=${{ matrix.flavor == 'sandbox' && 'sandbox' || 'prod' }} FASTEN_ENV=${{ matrix.flavor == 'sandbox' && 'sandbox' || 'prod' }}
sbom: true # sbom: true
sbom-dir: ./sbom-output # sbom-dir: ./sbom-output
- name: upload SBOM directory as a build artifact # - name: upload SBOM directory as a build artifact
uses: actions/upload-artifact@v3.1.0 # uses: actions/upload-artifact@v3.1.0
with: # with:
path: ./sbom-output # path: ./sbom-output
name: 'SBOM' # name: 'SBOM'
#
- name: upload spdx dependency # - name: upload spdx dependency
uses: advanced-security/spdx-dependency-submission-action@v0.0.1 # uses: advanced-security/spdx-dependency-submission-action@v0.0.1
with: # with:
filePath: ./sbom-output/ # filePath: ./sbom-output/