(ratis) branch master updated: RATIS-2110. Publish SBOM artifacts (#1110)

Tue, 25 Jun 2024 01:03:46 -0700 

This is an automated email from the ASF dual-hosted git repository.

adoroszlai pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/ratis.git


The following commit(s) were added to refs/heads/master by this push:
     new 19ead3912 RATIS-2110. Publish SBOM artifacts (#1110)
19ead3912 is described below

commit 19ead3912fc4017362645cd64015f9ae0bd6ad6a
Author: Doroszlai, Attila <[email protected]>
AuthorDate: Tue Jun 25 10:03:37 2024 +0200

    RATIS-2110. Publish SBOM artifacts (#1110)
---
 pom.xml                                  | 18 ++++++++++++++++++
 ratis-assembly/src/main/assembly/bin.xml | 10 ++++++++++
 2 files changed, 28 insertions(+)

diff --git a/pom.xml b/pom.xml
index 8292a85e7..60ffa14fc 100644
--- a/pom.xml
+++ b/pom.xml
@@ -189,6 +189,7 @@
 
     <protobuf-maven-plugin.version>0.6.1</protobuf-maven-plugin.version>
     <copy-rename-maven-plugin.version>1.0</copy-rename-maven-plugin.version>
+    <cyclonedx.version>2.8.0</cyclonedx.version>
 
     <spotbugs.version>4.2.1</spotbugs.version>
     <spotbugs-plugin.version>4.2.0</spotbugs-plugin.version>
@@ -724,6 +725,11 @@
           <artifactId>jacoco-maven-plugin</artifactId>
           <version>${jacoco.version}</version>
         </plugin>
+        <plugin>
+          <groupId>org.cyclonedx</groupId>
+          <artifactId>cyclonedx-maven-plugin</artifactId>
+          <version>${cyclonedx.version}</version>
+        </plugin>
       </plugins>
     </pluginManagement>
 
@@ -1055,6 +1061,18 @@
               </execution>
             </executions>
           </plugin>
+          <plugin>
+            <groupId>org.cyclonedx</groupId>
+            <artifactId>cyclonedx-maven-plugin</artifactId>
+            <executions>
+              <execution>
+                <phase>package</phase>
+                <goals>
+                  <goal>makeAggregateBom</goal>
+                </goals>
+              </execution>
+            </executions>
+          </plugin>
         </plugins>
       </build>
     </profile>
diff --git a/ratis-assembly/src/main/assembly/bin.xml 
b/ratis-assembly/src/main/assembly/bin.xml
index 7be3d01d6..abf4d40aa 100644
--- a/ratis-assembly/src/main/assembly/bin.xml
+++ b/ratis-assembly/src/main/assembly/bin.xml
@@ -63,6 +63,16 @@
       </includes>
       <fileMode>0644</fileMode>
     </fileSet>
+    <!-- aggregate BOM from root module -->
+    <fileSet>
+      <directory>${project.basedir}/../target</directory>
+      <outputDirectory>.</outputDirectory>
+      <includes>
+        <include>bom.json</include>
+        <include>bom.xml</include>
+      </includes>
+      <fileMode>0644</fileMode>
+    </fileSet>
     <fileSet>
       <directory>${project.basedir}/../ratis-docs/target/classes/docs
       </directory>

Reply via email to