Skip to content

Commit 2765bd2

Browse files
octocolbyoctocolby
authored
Remove Trivy
1 parent 912d97f commit 2765bd2

File tree

1 file changed

+29
-29
lines changed

1 file changed

+29
-29
lines changed

.github/workflows/build.yml

Lines changed: 29 additions & 29 deletions
Original file line numberDiff line numberDiff line change
@@ -100,35 +100,35 @@ jobs:
100100
docker push $IMAGE:${{ steps.vars.outputs.VERSION }}
101101
docker push $IMAGE:latest
102102
103-
- name: Generate SBOM with Trivy
104-
uses: aquasecurity/trivy-action@0.34.2
105-
with:
106-
format: 'cyclonedx'
107-
scan-type: 'fs'
108-
scan-ref: 'go.mod'
109-
output: 'sbom.json'
110-
111-
- name: Upload SBOM as Artifact
112-
uses: actions/upload-artifact@v4
113-
with:
114-
name: sbom.json
115-
path: sbom.json
116-
overwrite: true
117-
118-
- name: Upload SBOM to Dependency Track. How meta 🤯
119-
run: |
120-
docker run --rm \
121-
-e SBOM_UPLOADER_URL='${{ secrets.DTRACK_URL }}' \
122-
-e SBOM_UPLOADER_API_KEY='${{ secrets.DTRACK_KEY }}' \
123-
-e SBOM_UPLOADER_NAME='upload-sbom-go' \
124-
-e SBOM_UPLOADER_VERSION='${{ steps.vars.outputs.VERSION }}' \
125-
-e SBOM_UPLOADER_PARENT='upload-sbom-go' \
126-
-e SBOM_UPLOADER_TAGS='upload-sbom-go' \
127-
-v "$(pwd)/sbom.json:/tmp/sbom.json" \
128-
upload-sbom-go:${{ steps.vars.outputs.VERSION }} \
129-
--sbom /tmp/sbom.json \
130-
--latest \
131-
--poll
103+
# - name: Generate SBOM with Trivy
104+
# uses: aquasecurity/trivy-action@0.34.2
105+
# with:
106+
# format: 'cyclonedx'
107+
# scan-type: 'fs'
108+
# scan-ref: 'go.mod'
109+
# output: 'sbom.json'
110+
111+
# - name: Upload SBOM as Artifact
112+
# uses: actions/upload-artifact@v4
113+
# with:
114+
# name: sbom.json
115+
# path: sbom.json
116+
# overwrite: true
117+
118+
# - name: Upload SBOM to Dependency Track. How meta 🤯
119+
# run: |
120+
# docker run --rm \
121+
# -e SBOM_UPLOADER_URL='${{ secrets.DTRACK_URL }}' \
122+
# -e SBOM_UPLOADER_API_KEY='${{ secrets.DTRACK_KEY }}' \
123+
# -e SBOM_UPLOADER_NAME='upload-sbom-go' \
124+
# -e SBOM_UPLOADER_VERSION='${{ steps.vars.outputs.VERSION }}' \
125+
# -e SBOM_UPLOADER_PARENT='upload-sbom-go' \
126+
# -e SBOM_UPLOADER_TAGS='upload-sbom-go' \
127+
# -v "$(pwd)/sbom.json:/tmp/sbom.json" \
128+
# upload-sbom-go:${{ steps.vars.outputs.VERSION }} \
129+
# --sbom /tmp/sbom.json \
130+
# --latest \
131+
# --poll
132132

133133
release:
134134
name: Create GitHub Release

0 commit comments

Comments
 (0)