Move production-rules workflow into integration-tests #48
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| on: push | |
| name: Software Composition Analysis | |
| jobs: | |
| software-composition-analysis: | |
| runs-on: ubuntu-latest | |
| name: Datadog SBOM Generation and Upload | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v3 | |
| - name: Install Stable + Rustfmt + Clippy | |
| uses: actions-rs/toolchain@v1 | |
| with: | |
| toolchain: stable | |
| components: clippy | |
| override: true | |
| default: true | |
| - name: cargo install sbom | |
| run: cargo install --version 0.8.4 cargo-sbom | |
| - name: cargo generate sbom | |
| run: | | |
| cargo sbom --cargo-package kernel --output-format cyclone_dx_json_1_4 > kernel.json | |
| cargo sbom --cargo-package bins --output-format cyclone_dx_json_1_4 > bins.json | |
| cargo sbom --cargo-package cli --output-format cyclone_dx_json_1_4 > cli.json | |
| cargo sbom --cargo-package server --output-format cyclone_dx_json_1_4 > server.json | |
| - name: Generate SBOM and Upload | |
| id: software-composition-analysis | |
| uses: DataDog/datadog-sca-github-action@main | |
| with: | |
| dd_api_key: ${{ secrets.DD_API_KEY }} | |
| dd_app_key: ${{ secrets.DD_APP_KEY }} | |
| dd_service: datadog-static-analyzer | |
| dd_env: github-action | |
| dd_site: ${{ vars.DD_SITE }} | |