From b94a11e5910b6e4cf235405d079d2824c4dcd66f Mon Sep 17 00:00:00 2001
From: enzowritescode <1328683+enzowritescode@users.noreply.github.com>
Date: Thu, 12 Sep 2024 08:12:11 -0600
Subject: [PATCH] Use Reusable SBOM Workflow (#28161)

* Use reusable SBOM workflow

---------

Co-authored-by: Mattermost Build <build@mattermost.com>
---
 .github/workflows/snyk-sbom.yml | 29 +++--------------------------
 1 file changed, 3 insertions(+), 26 deletions(-)

diff --git a/.github/workflows/snyk-sbom.yml b/.github/workflows/snyk-sbom.yml
index fee6244f4c..87ab513465 100644
--- a/.github/workflows/snyk-sbom.yml
+++ b/.github/workflows/snyk-sbom.yml
@@ -4,31 +4,8 @@ on:
     types: [published]
 
 jobs:
-  security:
-    runs-on: ubuntu-latest
+  sbom:
     permissions:
       contents: write
-    steps:
-      - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-
-      - name: Setup Node
-        uses: actions/setup-node@1e60f620b9541d16bece96c5465dc8ee9832be0b # v4.0.3
-        with:
-          node-version: '22.6.0'
-
-      - name: Install Snyk CLI
-        run: npm install -g snyk@1.1292.2
-
-      - name: Generate SBOM
-        run: snyk sbom --format=cyclonedx1.5+json --all-projects > sbom.json
-        env:
-          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
-
-      - name: Upload SBOM
-        uses: Shopify/upload-to-release@c77c9b3e5d288adaef98a7007bf92340ec6ce03b # v2.0.0
-        with:
-          name: sbom.json
-          path: sbom.json
-          repo-token: ${{ secrets.GITHUB_TOKEN }}
-          content-type: application/json
+    uses: mattermost/actions-workflows/.github/workflows/snyk-sbom.yml@8401a73d1a168f520dc08fabcfb1600dec1176ef
+    secrets: inherit