Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Add SBOM Test to GitHub Workflow (#29467)
This pull request introduces a Software Bill of Materials (SBOM) test into our GitHub Actions workflow. Summary of Changes: 1. Added a new file in the workflow to run the SBOM test. Details: 1. The SBOM test step ensures that all dependencies used in the project are listed and validated against our security and compliance requirements. 2. This integration uses anchor-syft to generate and check the SBOM for any issues. Benefits: 1. Enhanced Security: Helps identify and manage vulnerabilities in third-party dependencies. 2. Compliance: Assists in meeting regulatory and organizational requirements for software transparency. 3. Automation: Streamlines the process of verifying dependency information as part of our CI/CD pipeline. --------- Co-authored-by: Mehdi <10160868+mbiuki@users.noreply.github.com>
- Loading branch information