Skip to content

PYTHON-5141 Update SBOM usage for Kondukto #73

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 9 commits into from
Feb 20, 2025
Merged

PYTHON-5141 Update SBOM usage for Kondukto #73

merged 9 commits into from
Feb 20, 2025

Conversation

@fetsko
Copy link
Contributor

@fetsko fetsko commented Feb 18, 2025

Description

  • updates the sbom action to use the Silkbomb 2.0 image

fetsko
fetsko commented Feb 18, 2025
View reviewed changes
sbom/action.yml Outdated
run: |
set -eux
if [ -n "${{ inputs.kondukto_sub_project }}" ]; then
KONDUKTO_BRANCH="${GITHUB_REF_NAME}_${{ inputs.kondukto_sub_project }}"
Copy link
Contributor Author

@fetsko fetsko Feb 18, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

append kondukto_sub_project to the branch name if set

fetsko
fetsko commented Feb 18, 2025
View reviewed changes
sbom/action.yml Outdated
KONDUKTO_BRANCH="${GITHUB_REF_NAME}"
fi
podman run --platform="linux/amd64" -it --rm -v ${RELEASE_ASSETS}:/pwd \
--env-file=${SILKBOMB_ENVFILE} \
Copy link
Contributor Author

@fetsko fetsko Feb 18, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

assumption here is that KONDUKTO_TOKEN is set in the environment file

fetsko
fetsko commented Feb 18, 2025
View reviewed changes
sbom/action.yml Outdated
name: Augment the SBOM
description: Augments the SBOM for the project
inputs:
# no longer used
Copy link
Contributor Author

@fetsko fetsko Feb 18, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm not familiar w/ GHA, but I assume that removing it would be breaking

@blink1073
Copy link
Member

blink1073 commented Feb 19, 2025
edited
Loading

Testing:

@blink1073 blink1073 changed the title Silkbomb 2.0 updates PYTHON-5141 Update SBOM usage for Kondukto Feb 19, 2025
@blink1073 blink1073 requested a review from alcaeus February 19, 2025 17:13
@blink1073 blink1073 marked this pull request as ready for review February 19, 2025 17:13
@blink1073 blink1073 marked this pull request as draft February 19, 2025 17:16
@blink1073 blink1073 marked this pull request as ready for review February 19, 2025 18:45
@jyemin jyemin requested a review from blink1073 February 19, 2025 22:17
@baileympearson
Copy link
Collaborator

baileympearson commented Feb 20, 2025

Passing in the Node driver: https://github.com/mongodb/node-mongodb-native/actions/runs/13441306933/job/37556182447
Passing in mongodb-client-encryption (which has bundled dependencies. ignore the failing publish step, this is unrelated.): https://github.com/mongodb-js/mongodb-client-encryption/actions/runs/13441413178/job/37557181157

baileympearson
baileympearson reviewed Feb 20, 2025
View reviewed changes
@blink1073 blink1073 merged commit 46329d5 into mongodb-labs:main Feb 20, 2025
5 checks passed
@fetsko fetsko mentioned this pull request Feb 24, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@baileympearson baileympearson baileympearson approved these changes

@alcaeus alcaeus Awaiting requested review from alcaeus

@blink1073 blink1073 Awaiting requested review from blink1073

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@fetsko @blink1073 @baileympearson