https://github.com/evryfs/sbom-dependency-submission-action

Submit SBOMs to GitHub's dependency submission API
https://github.com/evryfs/sbom-dependency-submission-action

Last synced: 29 days ago
JSON representation

Submit SBOMs to GitHub's dependency submission API

• Host: GitHub
• URL: https://github.com/evryfs/sbom-dependency-submission-action
• Owner: evryfs
• License: apache-2.0
• Created: 2022-06-21T12:05:31.000Z (over 2 years ago)
• Default Branch: main
• Last Pushed: 2023-04-18T01:04:26.000Z (over 1 year ago)
• Last Synced: 2024-11-06T15:02:36.004Z (about 1 month ago)
• Language: TypeScript
• Size: 5.65 MB
• Stars: 12
• Watchers: 3
• Forks: 4
• Open Issues: 7
• Metadata Files:
  • Readme: README.md
  • License: LICENSE
  • Codeowners: CODEOWNERS

Awesome Lists containing this project

• awesome-software-supply-chain-security - evryfs/sbom-dependency-submission-action: Submit SBOMs to GitHub's dependency submission API

README

        
# sbom-dependency-submission-action

Submit [SBOMs](https://cyclonedx.org/) to [GitHub's dependency submission API](https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/using-the-dependency-submission-api) using their [SDK](https://github.com/github/dependency-submission-toolkit).

See [example](https://github.com/evryfs/sbom-dependency-submission-action/blob/main/.github/workflows/test.yml) for how to use it in a workflow