You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@camel.apache.org by ac...@apache.org on 2024/01/08 10:06:48 UTC

(camel-kafka-connector) 01/02: Add SBOM generation profile and add it to release

This is an automated email from the ASF dual-hosted git repository.

acosentino pushed a commit to branch sbom-gen-release
in repository https://gitbox.apache.org/repos/asf/camel-kafka-connector.git

commit a24fb4a2d8dd15f37e272d1368bf07613b39f981
Author: Andrea Cosentino <an...@gmail.com>
AuthorDate: Mon Jan 8 10:39:26 2024 +0100

    Add SBOM generation profile and add it to release
    
    Signed-off-by: Andrea Cosentino <an...@gmail.com>
---
 pom.xml | 43 +++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 43 insertions(+)

diff --git a/pom.xml b/pom.xml
index 58b2fa80b..377f78634 100644
--- a/pom.xml
+++ b/pom.xml
@@ -44,6 +44,7 @@
         <maven-assembly-plugin.version>3.3.0</maven-assembly-plugin.version>
         <maven-source-plugin.version>3.1.0</maven-source-plugin.version>
         <maven-checksum-maven-plugin.version>1.7</maven-checksum-maven-plugin.version>
+        <cyclonedx-maven-plugin-version>2.7.10</cyclonedx-maven-plugin-version>
     </properties>
 
     <modules>
@@ -371,6 +372,48 @@
                             </execution>
                         </executions>
                     </plugin>
+                    <plugin>
+                        <groupId>org.cyclonedx</groupId>
+                        <artifactId>cyclonedx-maven-plugin</artifactId>
+                        <version>${cyclonedx-maven-plugin-version}</version>
+                        <inherited>false</inherited>
+                        <executions>
+                            <execution>
+                                <phase>package</phase>
+                                <goals>
+                                    <goal>makeAggregateBom</goal>
+                                </goals>
+                            </execution>
+                        </executions>
+                        <configuration>
+                            <outputName>${project.artifactId}-${project.version}-sbom</outputName>
+                        </configuration>
+                    </plugin>
+                </plugins>
+            </build>
+        </profile>
+        <profile>
+            <id>sbom</id>
+            <build>
+                <plugins>
+                    <plugin>
+                        <groupId>org.cyclonedx</groupId>
+                        <artifactId>cyclonedx-maven-plugin</artifactId>
+                        <version>${cyclonedx-maven-plugin-version}</version>
+                        <inherited>false</inherited>
+                        <configuration>
+                            <outputName>camel-sbom</outputName>
+                            <outputDirectory>${project.basedir}/camel-sbom/</outputDirectory>
+                        </configuration>
+                        <executions>
+                            <execution>
+                                <phase>package</phase>
+                                <goals>
+                                    <goal>makeAggregateBom</goal>
+                                </goals>
+                            </execution>
+                        </executions>
+                    </plugin>
                 </plugins>
             </build>
         </profile>