Skip to content
rust-sbom gen

rust-sbom gen #30

Sign in to view logs

rust-sbom gen

rust-sbom gen #30

Workflow file for this run

.github/workflows/rust-sbom.yml at 40f141f
# This workflow uses actions that are not certified by GitHub.
# They are provided by a third-party and are governed by
# separate terms of service, privacy policy, and support
# documentation.
# rust-clippy is a tool that runs a bunch of lints to catch common
# mistakes in your Rust code and help improve your Rust code.
# More details at https://github.com/rust-lang/rust-clippy
# and https://rust-lang.github.io/rust-clippy/
name: rust-sbom gen
on:
push:
branches: ["main"]
paths:
- "**/Cargo.toml"
- "**/Cargo.lock"
pull_request:
# The branches below must be a subset of the branches above
branches: ["main"]
schedule:
- cron: "50 23 * * *"
jobs:
rust-sbom:
name: Run rust-clippy analyzing
runs-on: ubuntu-latest
permissions:
contents: read
security-events: write
actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Install Rust toolchain
uses: dtolnay/rust-toolchain@stable
with:
toolchain: stable
components: clippy, rustfmt
- name: Install required cargo
run: cargo install cargo-cyclonedx
- name: Run outdated
run: cargo cyclonedx -f json
- name: Upload report
uses: actions/upload-artifact@v4
with:
name: sonar-report
path: apps/dev_cli/dev_cli.cdx.json
- name: Push to DepTrack
uses: DependencyTrack/gh-upload-sbom@v3
with:
serverhostname: ${{ secrets.DEPENDENCYTRACK_SERVERHOSTNAME }}
apikey: ${{ secrets.DEPENDENCYTRACK_APIKEY }}
bomfilename: "apps/dev_cli/dev_cli.cdx.json"
project: aea9514f-95b7-45df-baec-2a761c6139c3