File tree 1 file changed +3
-3
lines changed
1 file changed +3
-3
lines changed Original file line number Diff line number Diff line change 8080
8181 - name : Extract the SBOM from the component
8282 if : github.event_name != 'workflow_dispatch'
83- run : auditable2cdx target/wasm32-wasip1/release/${{ env.COMPONENT_NAME_UNDERSCORED }} >> ${ env.COMPONENT_NAME }.spdx.json
83+ run : auditable2cdx target/wasm32-wasip1/release/${{ env.COMPONENT_NAME_UNDERSCORED }} >> ${{ env.COMPONENT_NAME } }.spdx.json
8484
8585 - name : Publish `:<version>` to GitHub Container Registry
8686 if : github.event_name != 'workflow_dispatch'
@@ -101,7 +101,7 @@ jobs:
101101
102102 - name : Sign the SBOM for the versioned Wasm component
103103 if : github.event_name != 'workflow_dispatch'
104- run : cosign attest --type spdxjson --predicate ${ env.COMPONENT_NAME }.spdx.json ${{ steps.publish_versioned.outputs.digest }}
104+ run : cosign attest --type spdxjson --predicate ${{ env.COMPONENT_NAME } }.spdx.json ${{ steps.publish_versioned.outputs.digest }}
105105
106106 - name : Publish `:latest` release to GitHub Container Registry
107107 if : github.event_name != 'workflow_dispatch'
@@ -122,4 +122,4 @@ jobs:
122122
123123 - name : Sign the SBOM for the latest Wasm component
124124 if : github.event_name != 'workflow_dispatch'
125- run : cosign attest --type spdxjson --predicate ${ env.COMPONENT_NAME }.spdx.json ${{ steps.publish_latest.outputs.digest }}
125+ run : cosign attest --type spdxjson --predicate ${{ env.COMPONENT_NAME } }.spdx.json ${{ steps.publish_latest.outputs.digest }}
You can’t perform that action at this time.
0 commit comments