kuma
1name: "Build bom and licenses"
2on:
3workflow_dispatch: {}
4schedule:
5- cron: 0 3 * * *
6permissions: read-all
7jobs:
8sbom:
9timeout-minutes: 10
10runs-on: ubuntu-latest
11steps:
12- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
13- uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
14with:
15go-version-file: go.mod
16- uses: CycloneDX/gh-gomod-generate-sbom@efc74245d6802c8cefd925620515442756c70d8f # v2.0.0
17with:
18version: v1
19args: mod -licenses -json -output licenses.json
20- uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4.3.1
21with:
22name: licenses
23path: |
24licenses.json
25