Skip to content

fix SBOM issues for runtime #113400

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
haruna99 wants to merge 8 commits into from
Closed

fix SBOM issues for runtime #113400

haruna99 wants to merge 8 commits into from

Conversation

@haruna99
Copy link

@haruna99 haruna99 commented Mar 11, 2025
edited
Loading

Fixes Issue dotnet/arcade#15562

Description

This PR solves the SBOM generation issue in the runtime repo

@haruna99 haruna99 self-assigned this Mar 11, 2025
Copilot AI review requested due to automatic review settings March 11, 2025 22:51
@ghost ghost added the area-Meta label Mar 11, 2025
Copilot AI reviewed Mar 11, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR aims to fix SBOM generation issues for runtime by modifying the pipeline configuration. The key changes include disabling SBOM configuration at the job template level, introducing an explicit variable to disable SBOM, and adding a new step to generate SBOM using an external template.

Comments suppressed due to low confidence (1)

eng/pipelines/official/jobs/prepare-signed-artifacts.yml:14

  • [nitpick] Consider using consistent naming conventions for SBOM-related settings. For instance, align the casing of 'enableSbom' with 'DISABLE_SBOM' by renaming it to 'disableSbom' to improve clarity.
enableSbom: false

@dotnet-policy-service
Copy link
Contributor

dotnet-policy-service bot commented Mar 11, 2025

Tagging subscribers to this area: @dotnet/area-meta
See info in area-owners.md if you want to be subscribed.

hoyosjs
hoyosjs reviewed Mar 12, 2025
View reviewed changes
This was referenced Mar 12, 2025
Open
Open
@haruna99 haruna99 requested a review from hoyosjs March 12, 2025 17:33
hoyosjs
hoyosjs reviewed Mar 12, 2025
View reviewed changes
@build-analysis build-analysis bot mentioned this pull request Mar 13, 2025
Open
3 tasks
@haruna99
Copy link
Author

haruna99 commented Mar 13, 2025

I am closing this PR. I have created a new PR #113463 by forking the runtime repo.

@haruna99 haruna99 closed this Mar 13, 2025
@jkotas jkotas deleted the haruna/SBOM-fix branch March 16, 2025 05:27
@github-actions github-actions bot locked and limited conversation to collaborators Apr 15, 2025
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

Copilot code review Copilot Copilot left review comments

@hoyosjs hoyosjs hoyosjs approved these changes

@mmitche mmitche Awaiting requested review from mmitche

@epananth epananth Awaiting requested review from epananth

Assignees

@haruna99 haruna99

Labels

area-Meta

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@haruna99 @mmitche @hoyosjs