chore: fix Github action including 'generate-sbom' sub-action (#311)

craigzour · web-flow · commit 38159955686c · 2026-03-02T14:47:58.000-05:00
diff --git a/.github/workflows/prod-docker-build-push.yml b/.github/workflows/prod-docker-build-push.yml
@@ -49,14 +49,3 @@ jobs:
         run: |
           docker push $ECR_REGISTRY/$ECR_REPOSITORY:$TAG_VERSION
           docker push $ECR_REGISTRY/$ECR_REPOSITORY:latest
-
-      - name: Docker generate SBOM
-        uses: cds-snc/security-tools/.github/actions/generate-sbom@5a93d1deec72d4cb2737cb8418364fedba1c695c # v3.2.1
-        env:
-          TRIVY_DB_REPOSITORY: ${{ vars.TRIVY_DB_REPOSITORY }}
-          ECR_REGISTRY: ${{ steps.login-ecr.outputs.registry }}
-        with:
-          docker_image: "${{ env.ECR_REGISTRY }}/${{ env.ECR_REPOSITORY }}:${{ env.TAG_VERSION }}"
-          dockerfile_path: "Dockerfile"
-          sbom_name: "forms-api"
-          token: "${{ secrets.GITHUB_TOKEN }}"
diff --git a/.github/workflows/staging-docker-build-push.yml b/.github/workflows/staging-docker-build-push.yml
@@ -54,7 +54,7 @@ jobs:
           docker push $ECR_REGISTRY/$ECR_REPOSITORY:latest
 
       - name: Docker generate SBOM
-        uses: cds-snc/security-tools/.github/actions/generate-sbom@5a93d1deec72d4cb2737cb8418364fedba1c695c # v3.2.1
+        uses: cds-snc/security-tools/.github/actions/generate-sbom@12a0cdea1c5a515dfcbe353693db804a1793c0ed # v4.0.1
         env:
           TRIVY_DB_REPOSITORY: ${{ vars.TRIVY_DB_REPOSITORY }}
           ECR_REGISTRY: ${{ steps.login-ecr-staging.outputs.registry }}
