This is an automated email from the ASF dual-hosted git repository.
solomax pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/openmeetings.git
The following commit(s) were added to refs/heads/master by this push:
new 8db520284 [OPENMEETINGS-2786] spdx SBOM is added
8db520284 is described below
commit 8db520284ef4ac66928971b8cc8507d3427e4be8
Author: Maxim Solodovnik <[email protected]>
AuthorDate: Tue Dec 3 15:25:02 2024 +0700
[OPENMEETINGS-2786] spdx SBOM is added
---
pom.xml | 19 +++++++++++++++++++
1 file changed, 19 insertions(+)
diff --git a/pom.xml b/pom.xml
index 192d0b222..cc1ee78c5 100644
--- a/pom.xml
+++ b/pom.xml
@@ -82,6 +82,7 @@
<swagger-plugin.version>2.1.6</swagger-plugin.version>
<plexus-utils.version>3.5.1</plexus-utils.version>
<cyclonedx.version>2.9.1</cyclonedx.version>
+ <spdx.version>0.7.4</spdx.version>
<!-- dependency versions -->
<junit.version>5.11.3</junit.version>
@@ -1218,6 +1219,10 @@
<groupId>org.cyclonedx</groupId>
<artifactId>cyclonedx-maven-plugin</artifactId>
</plugin>
+ <plugin>
+ <groupId>org.spdx</groupId>
+ <artifactId>spdx-maven-plugin</artifactId>
+ </plugin>
</plugins>
<pluginManagement>
<plugins>
@@ -1654,6 +1659,20 @@
<outputName>${project.artifactId}-${project.version}-bom</outputName>
</configuration>
</plugin>
+ <plugin>
+ <groupId>org.spdx</groupId>
+
<artifactId>spdx-maven-plugin</artifactId>
+ <version>${spdx.version}</version>
+ <executions>
+ <execution>
+ <id>build-sbom-spdx</id>
+ <phase>package</phase>
+ <goals>
+
<goal>createSPDX</goal>
+ </goals>
+ </execution>
+ </executions>
+ </plugin>
</plugins>
</pluginManagement>
</build>
