Skip to content

chore(ci): update to silkbomb 2.0 #6734

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Feb 21, 2025
Merged

chore(ci): update to silkbomb 2.0 #6734

merged 1 commit into from
Feb 21, 2025

Conversation

@wratner
Copy link
Contributor

@wratner wratner commented Feb 19, 2025

Silkbomb 2.0 introduces the augment command which will allow you to upload your sbom to be scanned by OSV and have an augmented SBOM returned with any vulnerabilities in a single step.

Let me know if I'm missing anything or if there is anything else that can be cleaned up or improved. Thanks!

addaleax
addaleax reviewed Feb 20, 2025
View reviewed changes
@addaleax addaleax changed the title update to silkbomb 2.0 chore(ci): update to silkbomb 2.0 Feb 20, 2025
@addaleax addaleax mentioned this pull request Feb 20, 2025
Merged
@addaleax addaleax added the no-title-validation Skips validation of PR titles (conventional commit adherence + JIRA ticket inclusion) label Feb 21, 2025
@addaleax addaleax merged commit 6569133 into mongodb-js:main Feb 21, 2025
34 of 35 checks passed
@kraenhansen
Copy link
Contributor

kraenhansen commented Feb 26, 2025

I am getting this diff when running npm run update-evergreen-config after this PR merged:

diff --git a/.evergreen/buildvariants-and-tasks.yml b/.evergreen/buildvariants-and-tasks.yml
index 42a7e688a..48dea0197 100644
--- a/.evergreen/buildvariants-and-tasks.yml
+++ b/.evergreen/buildvariants-and-tasks.yml
@@ -33,7 +33,7 @@ buildvariants:
         run_on: macos-14-arm64-gui
   - name: package-ubuntu
     expansions:
-      target_platform: ubuntu
+      silk_asset_group: null
     display_name: Package Ubuntu
     run_on: ubuntu1804-large
     tasks:
@@ -42,7 +42,7 @@ buildvariants:
       - name: package-compass-readonly
   - name: package-windows
     expansions:
-      target_platform: windows
+      silk_asset_group: null
     display_name: Package Windows
     run_on: windows-vsCurrent-large
     tasks:
@@ -51,7 +51,7 @@ buildvariants:
       - name: package-compass-readonly
   - name: package-rhel
     expansions:
-      target_platform: rhel
+      silk_asset_group: null
     display_name: Package RHEL
     run_on: rhel80-large
     tasks:
@@ -60,7 +60,7 @@ buildvariants:
       - name: package-compass-readonly
   - name: package-macos-x64
     expansions:
-      target_platform: macos
+      silk_asset_group: null
     display_name: Package MacOS Intel
     run_on: macos-14
     tasks:
@@ -69,7 +69,7 @@ buildvariants:
       - name: package-compass-readonly
   - name: package-macos-arm
     expansions:
-      target_platform: macos-arm
+      silk_asset_group: null
     display_name: Package MacOS Arm64
     run_on: macos-14-arm64
     tasks:

This PR should have updated the .evergreen/buildvariants-and-tasks.in.yml file

compass/.evergreen/buildvariants-and-tasks.in.yml

Line 177 in 393c88c

silk_asset_group: <%= buildVariant.silk_asset_group %>
and committed any changes to the .evergreen/buildvariants-and-tasks.in.yml from running npm run update-evergreen-config.

@kraenhansen kraenhansen mentioned this pull request Feb 26, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@addaleax addaleax addaleax approved these changes

Assignees

No one assigned

Labels

no-title-validation Skips validation of PR titles (conventional commit adherence + JIRA ticket inclusion)

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@wratner @kraenhansen @addaleax