This is an automated email from the ASF dual-hosted git repository. acosentino pushed a commit to branch 4481 in repository https://gitbox.apache.org/repos/asf/camel-quarkus.git
commit 56a01fd9869b4a42a3535abd6ff791c44b39ffbf Author: Andrea Cosentino <[email protected]> AuthorDate: Fri Feb 10 11:18:02 2023 +0100 Provide a Github action for generating SBOM Signed-off-by: Andrea Cosentino <[email protected]> --- .github/workflows/generate-sbom-main.yml | 73 ++++++++++++++++++++++++++++++++ 1 file changed, 73 insertions(+) diff --git a/.github/workflows/generate-sbom-main.yml b/.github/workflows/generate-sbom-main.yml new file mode 100644 index 0000000000..741163389a --- /dev/null +++ b/.github/workflows/generate-sbom-main.yml @@ -0,0 +1,73 @@ +# +# Licensed to the Apache Software Foundation (ASF) under one or more +# contributor license agreements. See the NOTICE file distributed with +# this work for additional information regarding copyright ownership. +# The ASF licenses this file to You under the Apache License, Version 2.0 +# (the "License"); you may not use this file except in compliance with +# the License. You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# + +name: Generate SBOM (Camel Quarkus) + +on: + schedule: + - cron: '30 10 * * 0' + workflow_dispatch: + +permissions: {} +jobs: + build: + if: github.repository == 'apache/camel-quarkus' + permissions: + contents: write # to create branch (peter-evans/create-pull-request) + pull-requests: write # to create a PR (peter-evans/create-pull-request) + + runs-on: ubuntu-latest + strategy: + matrix: + java: [ '17' ] + steps: + - uses: actions/checkout@v3 + with: + persist-credentials: false + - name: Set up JDK ${{ matrix.java }} + uses: actions/setup-java@v3 + with: + distribution: 'temurin' + java-version: ${{ matrix.java }} + cache: 'maven' + - name: mvn build and sbom generation + run: mvn -l build.log -Dmvnd.threads=2 -V -Dhttp.keepAlive=false -Dmaven.wagon.http.pool=false -Dmaven.wagon.httpconnectionManager.ttlSeconds=120 --no-transfer-progress -e -Psbom -Dquickly -DskipTests verify + - name: archive logs + uses: actions/upload-artifact@v3 + if: always() + with: + name: build.log + path: build.log + - name: Create Pull Request + uses: peter-evans/create-pull-request@v4 + with: + base: main + token: ${{ secrets.GITHUB_TOKEN }} + commit-message: "Regen SBOM from commit ${{ github.sha }}" + committer: GitHub <[email protected]> + author: ${{ github.actor }} <${{ github.actor }}@users.noreply.github.com> + signoff: true + branch: regen_bot_sbom + title: "Generated sources regen for SBOM" + body: | + Regen bot :robot: found some uncommitted changes after running build on :camel-quarkus: `main` branch for generating SBOMs. + Please do not delete `regen_bot_sbom` branch after merge/rebase. + labels: | + regen + automated pr + camel-quarkus + assignees: oscerd
