Skip to content
SBOM Generate and Submit

Bump actions/dependency-review-action from 4.2.5 to 4.3.2 (#302) #181

Sign in to view logs

Bump actions/dependency-review-action from 4.2.5 to 4.3.2 (#302)

Bump actions/dependency-review-action from 4.2.5 to 4.3.2 (#302) #181

Workflow file for this run

.github/workflows/sbom-generate-submit.yml at 66e8c37
name: SBOM Generate and Submit
on:
push:
branches: [ "main", "release", "development", "nam20485" ]
workflow_dispatch:
permissions:
contents: read
jobs:
build:
name: Generate-Submit-SBOM
runs-on: ubuntu-22.04
permissions:
id-token: write
contents: write
steps:
- name: Harden Runner
uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 # v2.7.1
with:
egress-policy: audit
- name: Checkout Code
uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
- name: SBOM Generate
uses: advanced-security/sbom-generator-action@375dee8e6144d9fd0ec1f5667b4f6fb4faacefed # v0.0.1
id: sbom-generate
env:
GITHUB_TOKEN: ${{ github.token }}
- name: SBOM Upload
uses: advanced-security/spdx-dependency-submission-action@dc069b56ba31ce546dc419b549aceb808c632d9a # v0.0.1
with:
filePath: ${{ steps.sbom-generate.outputs.fileName }}