You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@camel.apache.org by ac...@apache.org on 2023/02/10 10:20:02 UTC

[camel-quarkus] 01/01: Provide a Github action for generating SBOM

This is an automated email from the ASF dual-hosted git repository.

acosentino pushed a commit to branch 4481
in repository https://gitbox.apache.org/repos/asf/camel-quarkus.git

commit 56a01fd9869b4a42a3535abd6ff791c44b39ffbf
Author: Andrea Cosentino <an...@gmail.com>
AuthorDate: Fri Feb 10 11:18:02 2023 +0100

    Provide a Github action for generating SBOM
    
    Signed-off-by: Andrea Cosentino <an...@gmail.com>
---
 .github/workflows/generate-sbom-main.yml | 73 ++++++++++++++++++++++++++++++++
 1 file changed, 73 insertions(+)

diff --git a/.github/workflows/generate-sbom-main.yml b/.github/workflows/generate-sbom-main.yml
new file mode 100644
index 0000000000..741163389a
--- /dev/null
+++ b/.github/workflows/generate-sbom-main.yml
@@ -0,0 +1,73 @@
+#
+# Licensed to the Apache Software Foundation (ASF) under one or more
+# contributor license agreements.  See the NOTICE file distributed with
+# this work for additional information regarding copyright ownership.
+# The ASF licenses this file to You under the Apache License, Version 2.0
+# (the "License"); you may not use this file except in compliance with
+# the License.  You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+name: Generate SBOM (Camel Quarkus)
+
+on:
+  schedule:
+  - cron: '30 10 * * 0'
+  workflow_dispatch:
+
+permissions: {}
+jobs:
+  build:
+    if: github.repository == 'apache/camel-quarkus'
+    permissions:
+      contents: write # to create branch (peter-evans/create-pull-request)
+      pull-requests: write # to create a PR (peter-evans/create-pull-request)
+
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        java: [ '17' ]
+    steps:
+      - uses: actions/checkout@v3
+        with:
+          persist-credentials: false
+      - name: Set up JDK ${{ matrix.java }}
+        uses: actions/setup-java@v3
+        with:
+          distribution: 'temurin'
+          java-version: ${{ matrix.java }}
+          cache: 'maven'
+      - name: mvn build and sbom generation
+        run: mvn -l build.log -Dmvnd.threads=2 -V -Dhttp.keepAlive=false -Dmaven.wagon.http.pool=false -Dmaven.wagon.httpconnectionManager.ttlSeconds=120 --no-transfer-progress -e -Psbom -Dquickly -DskipTests verify
+      - name: archive logs
+        uses: actions/upload-artifact@v3
+        if: always()
+        with:
+          name: build.log
+          path: build.log
+      - name: Create Pull Request
+        uses: peter-evans/create-pull-request@v4
+        with:
+          base: main
+          token: ${{ secrets.GITHUB_TOKEN }}
+          commit-message: "Regen SBOM from commit ${{ github.sha }}"
+          committer: GitHub <no...@github.com>
+          author: ${{ github.actor }} <${{ github.actor }}@users.noreply.github.com>
+          signoff: true
+          branch: regen_bot_sbom
+          title: "Generated sources regen for SBOM"
+          body: |
+            Regen bot :robot: found some uncommitted changes after running build on :camel-quarkus: `main` branch for generating SBOMs.
+            Please do not delete `regen_bot_sbom` branch after merge/rebase.
+          labels: |
+            regen
+            automated pr
+            camel-quarkus
+          assignees: oscerd