From 9ae427f4ea00f02eb8dcbe34cd0d7b11a01aa2e1 Mon Sep 17 00:00:00 2001 From: Alexey Pustovalov Date: Wed, 28 Feb 2024 18:05:16 +0900 Subject: [PATCH] Added SBOM for images --- .github/workflows/images_build.yml | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/.github/workflows/images_build.yml b/.github/workflows/images_build.yml index 0453d5645..8dd05d6bc 100644 --- a/.github/workflows/images_build.yml +++ b/.github/workflows/images_build.yml @@ -511,6 +511,8 @@ jobs: file: ${{ format('{0}/{1}/{2}/Dockerfile', env.DOCKERFILES_DIRECTORY, env.BASE_BUILD_NAME, matrix.os) }} platforms: ${{ steps.platform.outputs.list }} push: true + provenance: mode=max + sbom: true tags: ${{ steps.meta.outputs.tags }} labels: | org.opencontainers.image.revision=${{ fromJSON(steps.meta.outputs.json).labels['org.opencontainers.image.revision'] }} @@ -761,6 +763,8 @@ jobs: file: ${{ format('{0}/{1}/{2}/Dockerfile', env.DOCKERFILES_DIRECTORY, matrix.build, matrix.os) }} platforms: ${{ steps.platform.outputs.list }} push: true + provenance: mode=max + sbom: true tags: ${{ steps.meta.outputs.tags }} build-args: BUILD_BASE_IMAGE=${{ steps.base_build.outputs.base_build_image }} labels: | @@ -1218,6 +1222,8 @@ jobs: file: ${{ format('{0}/{1}/{2}/Dockerfile', env.DOCKERFILES_DIRECTORY, matrix.build, matrix.os) }} platforms: ${{ steps.platform.outputs.list }} push: ${{ env.AUTO_PUSH_IMAGES == 'true' }} + provenance: mode=max + sbom: ${{ env.AUTO_PUSH_IMAGES == 'true' }} tags: ${{ steps.meta.outputs.tags }} build-args: BUILD_BASE_IMAGE=${{ steps.base_build.outputs.base_build_image }} labels: |