Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add example of storing the report #2

Open
JeroenKnoops opened this issue Sep 8, 2022 · 0 comments
Open

Add example of storing the report #2

JeroenKnoops opened this issue Sep 8, 2022 · 0 comments
Labels
documentation Improvements or additions to documentation

Comments

@JeroenKnoops
Copy link
Member

Add an example of storing the report in the right place.

Background

The Software-Bill-of-Material is a part of the complete Secure Software Supply Chain together with things like a provenance file.
In order to fetch the SBOM of any used package, there is a convention were to put the files. An OCI can be used for example. (See this blog.)

It would be nice to include an example in this repository how to use this end-to-end in a build-pipeline.
@JeroenKnoops JeroenKnoops added the documentation Improvements or additions to documentation label Sep 8, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
documentation Improvements or additions to documentation
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@JeroenKnoops