Skip to content

Commit 2182a18

Browse files
riteshnoronhariteshnoronha
committed
consistency with other repos
1 parent 7db01d9 commit 2182a18

File tree

2 files changed

+25
-26
lines changed

2 files changed

+25
-26
lines changed

.github/workflows/sbom_dev.yml

+21-22
Original file line numberDiff line numberDiff line change
@@ -3,24 +3,23 @@ name: Dev | Build SBOM
33
on:
44
push:
55
branches-ignore:
6-
- 'main'
6+
- "main"
77
pull_request:
88
branches-ignore:
9-
- 'main'
9+
- "main"
1010
workflow_dispatch:
1111

1212
env:
13-
TOOL_NAME: ${{ github.repository }}
14-
SUPPLIER_NAME: Interlynk
15-
SUPPLIER_URL: https://interlynk.io
16-
DEFAULT_TAG: v0.0.1
17-
PYLYNK_TEMP_DIR: $RUNNER_TEMP/pylynk
18-
SBOM_TEMP_DIR: $RUNNER_TEMP/sbom
19-
SBOM_ENV: development
20-
MS_SBOM_TOOL_URL: https://github.com/microsoft/sbom-tool/releases/latest/download/sbom-tool-linux-x64
21-
MS_SBOM_SBOM_PATH: $RUNNER_TEMP/sbom/_manifest/spdx_2.2/manifest.spdx.json
22-
SBOM_EXCLUDE_DIRS: "**/samples/**"
23-
13+
TOOL_NAME: ${{ github.repository }}
14+
SUPPLIER_NAME: Interlynk
15+
SUPPLIER_URL: https://interlynk.io
16+
DEFAULT_TAG: v0.0.1
17+
PYLYNK_TEMP_DIR: $RUNNER_TEMP/pylynk
18+
SBOM_TEMP_DIR: $RUNNER_TEMP/sbom
19+
SBOM_ENV: development
20+
SBOM_FILE_PATH: $RUNNER_TEMP/sbom/_manifest/spdx_2.2/manifest.spdx.json
21+
MS_SBOM_TOOL_URL: https://github.com/microsoft/sbom-tool/releases/latest/download/sbom-tool-linux-x64
22+
MS_SBOM_TOOL_EXCLUDE_DIRS: "**/samples/**"
2423

2524
jobs:
2625
build-sbom:
@@ -31,19 +30,18 @@ jobs:
3130
contents: write
3231
steps:
3332
- name: Checkout Repository
34-
uses: actions/checkout@v3
33+
uses: actions/checkout@v3
3534
with:
36-
fetch-depth: 0
35+
fetch-depth: 0
3736

3837
- name: Get Tag
3938
id: get_tag
4039
run: echo "LATEST_TAG=$(git describe --tags --abbrev=0 2>/dev/null || echo 'v0.0.1')" >> $GITHUB_ENV
4140

42-
4341
- name: Set up Python
4442
uses: actions/setup-python@v4
4543
with:
46-
python-version: '3.x' # Specify the Python version needed
44+
python-version: "3.x" # Specify the Python version needed
4745

4846
- name: Checkout Python SBOM tool
4947
run: |
@@ -53,7 +51,7 @@ jobs:
5351
latest_tag=$(git describe --tags `git rev-list --tags --max-count=1`)
5452
git checkout $latest_tag
5553
echo "Checked out pylynk at tag: $latest_tag"
56-
54+
5755
- name: Install Python dependencies
5856
run: |
5957
cd ${{ env.PYLYNK_TEMP_DIR }}
@@ -66,9 +64,10 @@ jobs:
6664
mkdir -p ${{ env.SBOM_TEMP_DIR}}
6765
curl -Lo $RUNNER_TEMP/sbom-tool ${{ env.MS_SBOM_TOOL_URL }}
6866
chmod +x $RUNNER_TEMP/sbom-tool
69-
$RUNNER_TEMP/sbom-tool generate -b ${{ env.SBOM_TEMP_DIR }} -bc . -pn ${{ env.TOOL_NAME }} -pv ${{ env.LATEST_TAG }} -ps ${{ env.SUPPLIER_NAME}} -nsb ${{ env.SUPPLIER_URL }} -cd "--DirectoryExclusionList ${{ env.SBOM_EXCLUDE_DIRS }}"
67+
SANITIZED_REF=$(echo "${{ github.ref_name}}" | sed -e 's/[^a-zA-Z0-9.-]/-/g' -e 's/^[^a-zA-Z0-9]*//g')
68+
VERSION=${{ env.LATEST_TAG }}-$SANITIZED_REF
69+
$RUNNER_TEMP/sbom-tool generate -b ${{ env.SBOM_TEMP_DIR }} -bc . -pn ${{ env.TOOL_NAME }} -pv $VERSION -ps ${{ env.SUPPLIER_NAME}} -nsb ${{ env.SUPPLIER_URL }} -cd "--DirectoryExclusionList ${{ env.MS_SBOM_TOOL_EXCLUDE_DIRS }}"
7070
71-
- name: Upload SBOM
71+
- name: Upload SBOM
7272
run: |
73-
python3 ${{ env.PYLYNK_TEMP_DIR }}/pylynk.py --verbose upload --prod ${{env.TOOL_NAME}} --env ${{ env.SBOM_ENV }} --sbom ${{ env.MS_SBOM_SBOM_PATH }} --token ${{ secrets.INTERLYNK_SECURITY_TOKEN }}
74-
73+
python3 ${{ env.PYLYNK_TEMP_DIR }}/pylynk.py --verbose upload --prod ${{env.TOOL_NAME}} --env ${{ env.SBOM_ENV }} --sbom ${{ env.SBOM_FILE_PATH }} --token ${{ secrets.INTERLYNK_SECURITY_TOKEN }}

.github/workflows/sbom_release.yml

+4-4
Original file line numberDiff line numberDiff line change
@@ -13,9 +13,9 @@ env:
1313
PYLYNK_TEMP_DIR: $RUNNER_TEMP/pylynk
1414
SBOM_TEMP_DIR: $RUNNER_TEMP/sbom
1515
SBOM_ENV: default
16+
SBOM_FILE_PATH: $RUNNER_TEMP/sbom/_manifest/spdx_2.2/manifest.spdx.json
1617
MS_SBOM_TOOL_URL: https://github.com/microsoft/sbom-tool/releases/latest/download/sbom-tool-linux-x64
17-
MS_SBOM_SBOM_PATH: $RUNNER_TEMP/sbom/_manifest/spdx_2.2/manifest.spdx.json
18-
SBOM_EXCLUDE_DIRS: "**/samples/**"
18+
MS_SBOM_TOOL_EXCLUDE_DIRS: "**/samples/**"
1919

2020
jobs:
2121
build-sbom:
@@ -60,8 +60,8 @@ jobs:
6060
mkdir -p ${{ env.SBOM_TEMP_DIR}}
6161
curl -Lo $RUNNER_TEMP/sbom-tool ${{ env.MS_SBOM_TOOL_URL }}
6262
chmod +x $RUNNER_TEMP/sbom-tool
63-
$RUNNER_TEMP/sbom-tool generate -b ${{ env.SBOM_TEMP_DIR }} -bc . -pn ${{ env.TOOL_NAME }} -pv ${{ env.LATEST_TAG }} -ps ${{ env.SUPPLIER_NAME}} -nsb ${{ env.SUPPLIER_URL }} -cd "--DirectoryExclusionList ${{ env.SBOM_EXCLUDE_DIRS }}"
63+
$RUNNER_TEMP/sbom-tool generate -b ${{ env.SBOM_TEMP_DIR }} -bc . -pn ${{ env.TOOL_NAME }} -pv ${{ env.LATEST_TAG }} -ps ${{ env.SUPPLIER_NAME}} -nsb ${{ env.SUPPLIER_URL }} -cd "--DirectoryExclusionList ${{ env.MS_SBOM_TOOL_EXCLUDE_DIRS }}"
6464
6565
- name: Upload SBOM
6666
run: |
67-
python3 ${{ env.PYLYNK_TEMP_DIR }}/pylynk.py --verbose upload --prod ${{env.TOOL_NAME}} --env ${{ env.SBOM_ENV }} --sbom ${{ env.MS_SBOM_SBOM_PATH }} --token ${{ secrets.INTERLYNK_SECURITY_TOKEN }}
67+
python3 ${{ env.PYLYNK_TEMP_DIR }}/pylynk.py --verbose upload --prod ${{env.TOOL_NAME}} --env ${{ env.SBOM_ENV }} --sbom ${{ env.SBOM_FILE_PATH }} --token ${{ secrets.INTERLYNK_SECURITY_TOKEN }}

0 commit comments

Comments
 (0)