Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: adds sbom.json as install artifact #229

Merged
merged 1 commit into from
May 24, 2023
Merged

feat: adds sbom.json as install artifact #229

merged 1 commit into from
May 24, 2023

Conversation

lance
Copy link
Member

@lance lance commented May 24, 2023

This commit adds a dev dependency on @cyclonedx/cyclonedx-npm to generate an sbom.json file after each run of npm install. If the dependencies have changed, the sbom.json file will be updated. Finally, sbom.json is added as a file to the distributed package.

@lance
feat: adds sbom.json as install artifact
6b1b2fc 
This commit adds a dev dependency on @cyclonedx/cyclonedx-npm
to generate an `sbom.json` file after each run of `npm install`. If the
dependencies have changed, the `sbom.json` file will be updated.
Finally, `sbom.json` is added as a file to the distributed package.

Signed-off-by: Lance Ball <lball@redhat.com>
@lance lance requested a review from lholmquist May 24, 2023 14:25
@codecov-commenter
Copy link

Codecov Report

Patch and project coverage have no change.

Comparison is base (a03e828) 90.34% compared to head (6b1b2fc) 90.34%.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main     #229   +/-   ##
=======================================
  Coverage   90.34%   90.34%           
=======================================
  Files           9        9           
  Lines         290      290           
=======================================
  Hits          262      262           
  Misses         28       28

☔ View full report in Codecov by Sentry.
📢 Do you have feedback about the report comment? Let us know in this issue.

lholmquist
lholmquist approved these changes May 24, 2023
View reviewed changes
Copy link
Member

@lholmquist lholmquist left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nice!

@lance lance merged commit 1349641 into nodeshift:main May 24, 2023
@github-actions github-actions bot mentioned this pull request May 24, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lholmquist lholmquist lholmquist approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@lance @codecov-commenter @lholmquist