You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@camel.apache.org by ac...@apache.org on 2023/02/10 10:20:02 UTC
[camel-quarkus] 01/01: Provide a Github action for generating SBOM
This is an automated email from the ASF dual-hosted git repository.
acosentino pushed a commit to branch 4481
in repository https://gitbox.apache.org/repos/asf/camel-quarkus.git
commit 56a01fd9869b4a42a3535abd6ff791c44b39ffbf
Author: Andrea Cosentino <an...@gmail.com>
AuthorDate: Fri Feb 10 11:18:02 2023 +0100
Provide a Github action for generating SBOM
Signed-off-by: Andrea Cosentino <an...@gmail.com>
---
.github/workflows/generate-sbom-main.yml | 73 ++++++++++++++++++++++++++++++++
1 file changed, 73 insertions(+)
diff --git a/.github/workflows/generate-sbom-main.yml b/.github/workflows/generate-sbom-main.yml
new file mode 100644
index 0000000000..741163389a
--- /dev/null
+++ b/.github/workflows/generate-sbom-main.yml
@@ -0,0 +1,73 @@
+#
+# Licensed to the Apache Software Foundation (ASF) under one or more
+# contributor license agreements. See the NOTICE file distributed with
+# this work for additional information regarding copyright ownership.
+# The ASF licenses this file to You under the Apache License, Version 2.0
+# (the "License"); you may not use this file except in compliance with
+# the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+name: Generate SBOM (Camel Quarkus)
+
+on:
+ schedule:
+ - cron: '30 10 * * 0'
+ workflow_dispatch:
+
+permissions: {}
+jobs:
+ build:
+ if: github.repository == 'apache/camel-quarkus'
+ permissions:
+ contents: write # to create branch (peter-evans/create-pull-request)
+ pull-requests: write # to create a PR (peter-evans/create-pull-request)
+
+ runs-on: ubuntu-latest
+ strategy:
+ matrix:
+ java: [ '17' ]
+ steps:
+ - uses: actions/checkout@v3
+ with:
+ persist-credentials: false
+ - name: Set up JDK ${{ matrix.java }}
+ uses: actions/setup-java@v3
+ with:
+ distribution: 'temurin'
+ java-version: ${{ matrix.java }}
+ cache: 'maven'
+ - name: mvn build and sbom generation
+ run: mvn -l build.log -Dmvnd.threads=2 -V -Dhttp.keepAlive=false -Dmaven.wagon.http.pool=false -Dmaven.wagon.httpconnectionManager.ttlSeconds=120 --no-transfer-progress -e -Psbom -Dquickly -DskipTests verify
+ - name: archive logs
+ uses: actions/upload-artifact@v3
+ if: always()
+ with:
+ name: build.log
+ path: build.log
+ - name: Create Pull Request
+ uses: peter-evans/create-pull-request@v4
+ with:
+ base: main
+ token: ${{ secrets.GITHUB_TOKEN }}
+ commit-message: "Regen SBOM from commit ${{ github.sha }}"
+ committer: GitHub <no...@github.com>
+ author: ${{ github.actor }} <${{ github.actor }}@users.noreply.github.com>
+ signoff: true
+ branch: regen_bot_sbom
+ title: "Generated sources regen for SBOM"
+ body: |
+ Regen bot :robot: found some uncommitted changes after running build on :camel-quarkus: `main` branch for generating SBOMs.
+ Please do not delete `regen_bot_sbom` branch after merge/rebase.
+ labels: |
+ regen
+ automated pr
+ camel-quarkus
+ assignees: oscerd