🗑️ remove this branch from ci action #8
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Upload BOM to Dependency-Track | |
| on: | |
| push: | |
| paths: | |
| - backend/** | |
| - .github/workflows/dependency-track-analysis.yml | |
| branches: ["main"] | |
| pull_request: | |
| paths: | |
| - backend/** | |
| - .github/workflows/dependency-track-analysis.yml | |
| types: [opened, reopened, synchronize] | |
| jobs: | |
| upload-bom: | |
| runs-on: ubuntu-latest | |
| steps: | |
| # Checkout the code | |
| - uses: actions/checkout@v4 | |
| - name: Set up JDK 21 | |
| uses: actions/setup-java@v4 | |
| with: | |
| java-version: "21" | |
| distribution: "temurin" | |
| cache: maven | |
| - name: mvn makeAggregateBom | |
| run: mvn org.cyclonedx:cyclonedx-maven-plugin:2.8.0:makeBom --file backend/pom.xml | |
| # Upload the SBOM to Dependency-Track | |
| - name: Upload BOM to Dependency-Track | |
| uses: DependencyTrack/[email protected] | |
| with: | |
| apiKey: ${{ secrets.DEPENDENCYTRACK_APIKEY }} | |
| serverHostname: "dtrack.hopps.cloud" | |
| bomFilename: "backend/app.hopps.org/target/bom.xml" | |
| projectName: "app.hopps.org" | |
| projectVersion: "main" | |
| autoCreate: true | |
| # Upload the SBOM to Dependency-Track | |
| - name: Upload BOM to Dependency-Track | |
| uses: DependencyTrack/[email protected] | |
| with: | |
| apiKey: ${{ secrets.DEPENDENCYTRACK_APIKEY }} | |
| serverHostname: "dtrack.hopps.cloud" | |
| bomFilename: "backend/app.hopps.az-document-ai/target/bom.xml" | |
| projectName: "app.hopps.az-document-ai" | |
| projectVersion: "main" | |
| autoCreate: true |