Skip to content

Commit f4ae8c2

Browse files
tdrueztdruez
committed
DEBUG workflow
Signed-off-by: tdruez <[email protected]>
1 parent 0429814 commit f4ae8c2

File tree

1 file changed

+7
-7
lines changed

1 file changed

+7
-7
lines changed

.github/workflows/sca-integration-osv.yml

Lines changed: 7 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -37,17 +37,17 @@ jobs:
3737
- name: Run OSV Scanner
3838
run: |
3939
osv-scanner scan --help
40-
osv-scanner scan image alpine:3.17.0 --all-packages --format spdx-2-3 --output sbom.spdx.json || true
40+
osv-scanner scan image alpine:3.17.0 --all-packages --format spdx-2-3 --output sbom.spdx.json
4141
4242
# - name: Run OSV Scanner
4343
# uses: docker://ghcr.io/google/osv-scanner-action:v2.2.1
4444
# with:
4545
# args: scan image --archive alpine_3.17.0.tar --format spdx-2-3 --all-packages > osv-scanner.spdx.json || true
4646
# args: scan image --archive alpine_3.17.0.tar --format json
4747

48-
# - name: Upload SBOM as GitHub Artifact
49-
# uses: actions/upload-artifact@v4
50-
# with:
51-
# name: osv-scanner-sbom-report
52-
# path: osv-scanner.cdx.json
53-
# retention-days: 20
48+
- name: Upload SBOM as GitHub Artifact
49+
uses: actions/upload-artifact@v4
50+
with:
51+
name: osv-scanner-sbom-report
52+
path: sbom.spdx.json
53+
retention-days: 20

0 commit comments

Comments
 (0)