[camel-spring-boot] 01/03: Added SBOM generation to Camel-Spring-boot

Wed, 01 Feb 2023 01:55:28 -0800 

This is an automated email from the ASF dual-hosted git repository.

acosentino pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/camel-spring-boot.git

commit 8407ee5f9f2f502e67409882025627b509063076
Author: Andrea Cosentino <[email protected]>
AuthorDate: Wed Feb 1 09:35:52 2023 +0100

    Added SBOM generation to Camel-Spring-boot
    
    Signed-off-by: Andrea Cosentino <[email protected]>
---
 pom.xml | 47 ++++++++++++++++++++++++++++++++++++++++++++++-
 1 file changed, 46 insertions(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index 2818f811246..8b3964c0738 100644
--- a/pom.xml
+++ b/pom.xml
@@ -132,6 +132,8 @@
         <springdoc-version>1.6.6</springdoc-version>
         <surefire.version>${maven-surefire-plugin-version}</surefire.version>
         <swagger-parser-v3-version>2.1.10</swagger-parser-v3-version>
+       <cyclonedx-maven-plugin-version>2.7.4</cyclonedx-maven-plugin-version>
+       <antrun-maven-plugin-version>3.1.0</antrun-maven-plugin-version>
     </properties>
 
 
@@ -873,6 +875,49 @@
                 </plugins>
             </build>
         </profile>
-
+        <profile>
+            <id>sbom</id>
+            <build>
+            <plugins>
+                <plugin>
+                   <groupId>org.cyclonedx</groupId>
+                   <artifactId>cyclonedx-maven-plugin</artifactId>
+                   <version>${cyclonedx-maven-plugin-version}</version>
+                   <inherited>false</inherited>
+                   <configuration>
+                        <outputName>camel-spring-boot-sbom</outputName>
+                   </configuration>
+                   <executions>
+                       <execution>
+                           <phase>package</phase>
+                           <goals>
+                               <goal>makeAggregateBom</goal>
+                           </goals>
+                      </execution>
+                   </executions>
+                </plugin>
+                <plugin>
+                     <groupId>org.apache.maven.plugins</groupId>
+                     <artifactId>maven-antrun-plugin</artifactId>
+                     <version>${antrun-maven-plugin-version}</version>
+                     <inherited>false</inherited>
+                     <executions>
+                         <execution>
+                             <phase>package</phase>
+                             <configuration>
+                                 <target>
+                                     <copy 
file="${project.build.directory}/camel-sbom.json" 
todir="${project.basedir}/camel-spring-boot-sbom/" />
+                                     <copy 
file="${project.build.directory}/camel-sbom.xml" 
todir="${project.basedir}/camel-spring-boot-sbom/" />
+                                 </target>
+                             </configuration>
+                             <goals>
+                                 <goal>run</goal>
+                             </goals>
+                         </execution>
+                   </executions>
+                </plugin>
+            </plugins>
+            </build>
+        </profile>
     </profiles>
 </project>

Reply via email to