File tree Expand file tree Collapse file tree 1 file changed +45
-0
lines changed
Expand file tree Collapse file tree 1 file changed +45
-0
lines changed Original file line number Diff line number Diff line change 1+ # This workflow will build a Java project with Maven, and cache/restore any dependencies to improve the workflow execution time
2+ # For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-java-with-maven
3+
4+ # This workflow uses actions that are not certified by GitHub.
5+ # They are provided by a third-party and are governed by
6+ # separate terms of service, privacy policy, and support
7+ # documentation.
8+
9+ name : Java CI with Maven
10+
11+ on :
12+ workflow_dispatch :
13+ push :
14+ branches : [ "main" ]
15+ pull_request :
16+ branches : [ "main" ]
17+
18+ jobs :
19+ build :
20+ runs-on : ubuntu-latest
21+
22+ steps :
23+ - name : Checkout Repo
24+ uses : actions/checkout@v4
25+
26+ - name : Set up JDK 21
27+ uses : actions/setup-java@v4
28+ with :
29+ java-version : ' 21'
30+ distribution : ' temurin'
31+ cache : maven
32+
33+ - name : Build with Maven
34+ run : ./mvnw org.cyclonedx:cyclonedx-maven-plugin:makeAggregateBom
35+
36+ - name : deploy SBOM to Dependencytrack
37+ uses : DependencyTrack/gh-upload-sbom@v3
38+ with :
39+ serverHostname : ' api.dependencytrack.open-elements.cloud'
40+ apiKey : ${{ secrets.DEPENDENCYTRACK_APIKEY }}
41+ projectName : ' hiero-enterprise-java'
42+ projectVersion : ' main'
43+ bomFilename : " /target/bom.xml"
44+ autoCreate : true
45+
You can’t perform that action at this time.
0 commit comments