Skip to content

Commit

Permalink
build: use OSV-Scanner GitHub Action
Browse files Browse the repository at this point in the history
  • Loading branch information
@bestbeforetoday
bestbeforetoday committed Jun 11, 2024
1 parent 2c4dce9 commit 624ac75
Showing 1 changed file with 6 additions and 1 deletion.
7 changes: 6 additions & 1 deletion .github/workflows/pr.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -37,6 +37,8 @@ jobs:
osv-scanner:
runs-on: ubuntu-latest
continue-on-error: true
permissions:
security-events: write
strategy:
fail-fast: false
matrix:
Expand All @@ -55,7 +57,10 @@ jobs:
- name: Generate SBOM
run: ./gradlew :${{ matrix.project }}:cyclonedxBom
- name: Scan
run: osv-scanner scan --sbom ${{ matrix.project }}/build/reports/bom.json
uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml"
with:
scan-args: |-
--lockfile=${{ matrix.projecy }}/build/reports/bom.json
java:
name: Build and Test Java
runs-on: ubuntu-latest
Expand Down

0 comments on commit 624ac75

Please sign in to comment.