rel-v3.0.1 (#15)

* Merged in PIPES-11_FixGitHubActions (pull request #19)

PIPES-11: fix docker build action

* PIPES-11: fix docker build action

* Merged in feb_2024_updates (pull request #20)

Feb 2024 updates

* Feb 2024 updates

* Feb 2024 updates

* Feb 2024 updates

* merge with github

* Merged in optimizeDockerImage (pull request #22)

OptimizeDockerImage

* optimize Dockerfile

* optimize Dockerfile & pipeline

* Merged in May2024_Updates (pull request #23)

June 2024 Updates

* fix code coverage

* fix code coverage

* update version in README.md

* Merged in dec_2024_updates (pull request #24)

Update @cyclonedx/cyclonedx-npm to 1.19.3

* Update @cyclonedx/cyclonedx-npm to 1.19.3

* Update sbom gen pipeline

* v1.6.0 release

* Merged in addSonarIntegration (pull request #25)

add support for sonarcloud

* add support for sonarcloud

* add support for sonarcloud

* Merged in addBadges (pull request #26)

add badges to README

* add badges to README

* Merged in Jan2024Updates (pull request #27)

January 2024 Updates

* January 2024 Updates

* Merged in rel-v2.0.0 (pull request #28)

Bump version to 2.0.0

* Bump version to 2.0.0

* Merged in useOSSFNaming (pull request #29)

Standardize SBOM naming per OSSF guidelines

* Standardize SBOM naming per OSSF guidelines

* Standardize SBOM naming per OSSF guidelines

* Merged in rel-v3.0.0 (pull request #30)

bump version to 3.0.0

* bump version to 3.0.0

* Merged in fix_gen_sbom_functions (pull request #31)

fix gen_sbom_functions get_version() function

* fix gen_sbom_functions get_version() function

* bump version to 3.0.1

---------

Co-authored-by: Cosimo Commisso <[email protected]>
Co-authored-by: Cosimo Commisso <[email protected]>

Author: 3 people

README.md

@@ -9,13 +9,6 @@
 ![Build Badge](https://img.shields.io/bitbucket/pipelines/ccideas1/cyclonedx-npm-pipe/main)
 ![GitHub release (latest by date)](https://img.shields.io/github/v/release/shiftleftcyber/cyclonedx-npm-pipe)
 
-[![Bugs](https://sonarcloud.io/api/project_badges/measure?project=ccideas1_cyclonedx-npm-pipe&metric=bugs)](https://sonarcloud.io/summary/new_code?id=ccideas1_cyclonedx-npm-pipe)
-[![Code Smells](https://sonarcloud.io/api/project_badges/measure?project=ccideas1_cyclonedx-npm-pipe&metric=code_smells)](https://sonarcloud.io/summary/new_code?id=ccideas1_cyclonedx-npm-pipe)
-[![Duplicated Lines (%)](https://sonarcloud.io/api/project_badges/measure?project=ccideas1_cyclonedx-npm-pipe&metric=duplicated_lines_density)](https://sonarcloud.io/summary/new_code?id=ccideas1_cyclonedx-npm-pipe)
-
-![Build Badge](https://img.shields.io/bitbucket/pipelines/ccideas1/cyclonedx-npm-pipe/main)
-![GitHub release (latest by date)](https://img.shields.io/github/v/release/shiftleftcyber/cyclonedx-npm-pipe)
-
 ShiftSBOM-Node is a pure client-side Bitbucket Pipe that generates a CycloneDX-compliant Software Bill of Materials
 (SBOM) for Node.js/npm projects. No subscriptions, server access, or API keys are required.
 
@@ -46,7 +39,7 @@ pipelines:
         caches:
           - node
         script:
-          - pipe: docker://ccideas/cyclonedx-npm-pipe:3.0.0
+          - pipe: docker://ccideas/cyclonedx-npm-pipe:3.0.1
             variables:
               IGNORE_NPM_ERRORS: 'true' # optional
               NPM_SHORT_PURLS: 'true' # optional

gen_sbom_functions.sh

@@ -59,9 +59,9 @@ get_package_version() {
   fi
 }
 
-get_version() (
+get_version() {
   PACKAGE_VERSION=$(cat package.json | jq --raw-output .version)
-)
+}
 
 help() {
   echo "Generates a CycloneDX sBOM file for the given project"

pipe.yml

@@ -1,5 +1,5 @@
 name: CycloneDX node/npm sBOM Generator
-image: shiftleftcyber/cyclonedx-npm-pipe:3.0.0
+image: shiftleftcyber/cyclonedx-npm-pipe:3.0.1
 category: Security
 description: Generates a CycloneDX compliant Software Bill of Materials for a node/npm project
 repository: https://bitbucket.org/ccideas1/cyclonedx-npm-pipe/src/main/

sonar-project.properties

@@ -1,5 +1,5 @@
 sonar.host.url=https://sonarcloud.io
 sonar.orginization=ccideas
 sonar.projectKey=ccideas1_cyclonedx-npm-pipe
-sonar.projectVersion=v3.0.0
+sonar.projectVersion=v3.0.1
 sonar.sources=.