Publishing first version of SBOM-wiki #6
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Node.js CI | |
on: | |
release: | |
types: [published] | |
workflow_dispatch: | |
jobs: | |
build: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- name: Use Node.js LTS | |
uses: actions/setup-node@v4 | |
with: | |
node-version: 'lts/*' | |
# Build main page for the wiki | |
- name: Install dependencies | |
run: cd SBOM-wiki && npm install | |
- name: Run build | |
run: cd SBOM-wiki && npm run build | |
# Build the SBOM Catalog and copy the artifact to the wiki | |
- name: Install dependencies | |
run: cd SBOM-Catalog && npm install | |
- name: Run lint | |
run: cd SBOM-Catalog && npm run lint | |
- name: Run build | |
run: cd SBOM-Catalog && npm run build | |
- name: copy Catalog to build artifact | |
run: rm -rf SBOM-wiki/.vitepress/dist/catalog/* && mv SBOM-Catalog/dist/* SBOM-wiki/.vitepress/dist/catalog | |
# Publish all aritifacts | |
- name: Upload pages artifact to action workflow | |
uses: actions/upload-artifact@v4 | |
with: | |
name: pages-build-artifact | |
path: SBOM-wiki/.vitepress/dist/ | |
- name: Create zip for release file | |
run: zip -r sbom-catalog-${{github.ref_name}}.zip SBOM-wiki/.vitepress/dist | |
- name: Upload pages release asset | |
uses: softprops/action-gh-release@v2 | |
with: | |
files: sbom-catalog-${{github.ref_name}}.zip | |
- name: Deploy | |
uses: JamesIves/github-pages-deploy-action@v4 | |
with: | |
folder: SBOM-wiki/.vitepress/dist | |
branch: gh-pages | |
# Create a SBOM with Syft for SPDX | |
create_spdx_sbom: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- name: Use Node.js LTS | |
uses: actions/setup-node@v4 | |
with: | |
node-version: 'lts/*' | |
- name: Syft SPDX SBOM generation | |
uses: anchore/sbom-action@v0 | |
with: | |
artifact-name: sbom-catalog-${{github.ref_name}}.spdx.json | |
format: spdx-json | |
# Create a SBOM with Syft for CycloneDX | |
create_cdx_sbom: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- name: Use Node.js LTS | |
uses: actions/setup-node@v4 | |
with: | |
node-version: 'lts/*' | |
- name: Syft CycloneDx SBOM generation | |
uses: anchore/sbom-action@v0 | |
with: | |
artifact-name: sbom-catalog-${{github.ref_name}}.cdx.json | |
format: cyclonedx-json |