You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@camel.apache.org by ac...@apache.org on 2023/05/31 08:55:49 UTC

[camel-k-runtime] 01/02: Added GH Action for generating SBOM

This is an automated email from the ASF dual-hosted git repository.

acosentino pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/camel-k-runtime.git

commit fb5845fa7c74c5b42bb2cc644fa136ae3e6042df
Author: Andrea Cosentino <an...@gmail.com>
AuthorDate: Wed May 31 10:48:20 2023 +0200

    Added GH Action for generating SBOM
    
    Signed-off-by: Andrea Cosentino <an...@gmail.com>
---
 .github/workflows/generate-sbom-main.yml | 76 ++++++++++++++++++++++++++++++++
 1 file changed, 76 insertions(+)

diff --git a/.github/workflows/generate-sbom-main.yml b/.github/workflows/generate-sbom-main.yml
new file mode 100644
index 00000000..5cd28b7f
--- /dev/null
+++ b/.github/workflows/generate-sbom-main.yml
@@ -0,0 +1,76 @@
+#
+# Licensed to the Apache Software Foundation (ASF) under one or more
+# contributor license agreements.  See the NOTICE file distributed with
+# this work for additional information regarding copyright ownership.
+# The ASF licenses this file to You under the Apache License, Version 2.0
+# (the "License"); you may not use this file except in compliance with
+# the License.  You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+name: Generate Camel K Runtime SBOM
+
+on:
+  schedule:
+    # Every 24 hours
+  - cron: '30 18 * * 0'
+  workflow_dispatch:
+
+permissions: {}
+jobs:
+  build:
+    if: github.repository == 'apache/camel-k-runtime'
+    permissions:
+      contents: write # to create branch (peter-evans/create-pull-request)
+      pull-requests: write # to create a PR (peter-evans/create-pull-request)
+
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        java: [ '11' ]
+    steps:
+      - uses: actions/checkout@v3
+        with:
+          persist-credentials: false
+      - id: install-mvnd
+        uses: ./.github/actions/install-mvnd
+      - name: Set up JDK ${{ matrix.java }}
+        uses: actions/setup-java@v3
+        with:
+          distribution: 'temurin'
+          java-version: ${{ matrix.java }}
+          cache: 'maven'
+      - name: mvn build and sbom generation
+        run: ./mvnw -V --no-transfer-progress clean install -DskipTests -Psbom
+      - name: archive logs
+        uses: actions/upload-artifact@v3
+        if: always()
+        with:
+          name: build.log
+          path: build.log
+      - name: Create Pull Request
+        uses: peter-evans/create-pull-request@v5
+        with:
+          base: main
+          token: ${{ secrets.GITHUB_TOKEN }}
+          commit-message: "Regen SBOM from commit ${{ github.sha }}"
+          committer: GitHub <no...@github.com>
+          author: ${{ github.actor }} <${{ github.actor }}@users.noreply.github.com>
+          signoff: true
+          branch: regen_bot_sbom
+          title: "Generated sources regen for SBOM"
+          body: |
+            Regen bot :robot: found some uncommitted changes after running build on :camel-k-runtime: `main` branch for generating SBOMs.
+            Please do not delete `regen_bot_sbom` branch after merge/rebase.
+          labels: |
+            regen
+            automated pr
+            camel-k-runtime
+          assignees: oscerd