Skip to content
Snyk - Software Bill of Materials (SBOM)

v0.1.0-rc6 #19

Sign in to view logs

v0.1.0-rc6

v0.1.0-rc6 #19

Workflow file for this run

.github/workflows/snyk-sbom.yml at 7b54a72
name: Snyk - Software Bill of Materials (SBOM)
on:
release:
types: [published]
jobs:
security:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
- name: Setup Node
uses: actions/setup-node@1e60f620b9541d16bece96c5465dc8ee9832be0b # v4.0.3
with:
node-version: '22.6.0'
- name: Install Snyk CLI
run: npm install -g snyk
- name: Generate SBOM
run: snyk sbom --format=cyclonedx1.5+json --all-projects > sbom.json
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
- name: Upload SBOM
uses: actions/upload-artifact@834a144ee995460fba8ed112a2fc961b36a5ec5a # v4.3.6
with:
name: sbom.json
path: sbom.json
repo-token: ${{ secrets.GITHUB_TOKEN }}
content-type: application/json