We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
1 parent 5610342 commit bc37cc2Copy full SHA for bc37cc2
.gitlab-ci.yml
@@ -8,9 +8,10 @@ sbom-creation:
8
stage: sbom
9
rules:
10
- if: $CI_PIPELINE_SOURCE == "web"
11
- when: manual
+ when: always
12
- if: $CI_COMMIT_REF_NAME =~ $CI_DEFAULT_BRANCH
13
when: always
14
+ - when: never
15
image:
16
name: ${DEFAULT_IMAGE}:develop
17
entrypoint: ['']
@@ -36,6 +37,10 @@ security-scan:
36
37
yaml_variables: true
38
variables:
39
APPSECHUB_PARENT_PIPELINE_ID: $CI_PIPELINE_ID
40
+ APPSECHUB_SCA_SBOM_GENERATOR: custom
41
+ APPSECHUB_SBOM_PATH: sbom.cyclonedx.json
42
+ APPSECHUB_SBOM_MASK: "*bom*.json"
43
+ CUSTOM_SBOM_GENERATOR_JOB_NAME: sbom-creation
44
45
- if: $CI_COMMIT_REF_NAME == $CI_DEFAULT_BRANCH
46
0 commit comments