Use Reusable SBOM Workflow (#28161)

* Use reusable SBOM workflow --------- Co-authored-by: Mattermost Build <build@mattermost.com>
2025-02-25 18:55:24 -06:00 · 2024-09-12 08:12:11 -06:00 · 2024-09-12 08:12:11 -06:00 · b94a11e591
commit b94a11e591
parent f8202309ce
1 changed files with 3 additions and 26 deletions
--- a/.github/workflows/snyk-sbom.yml
+++ b/.github/workflows/snyk-sbom.yml
@ -4,31 +4,8 @@ on:
    types: [published]

 jobs:
-  security:
-    runs-on: ubuntu-latest
+  sbom:
    permissions:
      contents: write
-    steps:
-      - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-
-      - name: Setup Node
-        uses: actions/setup-node@1e60f620b9541d16bece96c5465dc8ee9832be0b # v4.0.3
-        with:
-          node-version: '22.6.0'
-
-      - name: Install Snyk CLI
-        run: npm install -g snyk@1.1292.2
-
-      - name: Generate SBOM
-        run: snyk sbom --format=cyclonedx1.5+json --all-projects > sbom.json
-        env:
-          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
-
-      - name: Upload SBOM
-        uses: Shopify/upload-to-release@c77c9b3e5d288adaef98a7007bf92340ec6ce03b # v2.0.0
-        with:
-          name: sbom.json
-          path: sbom.json
-          repo-token: ${{ secrets.GITHUB_TOKEN }}
-          content-type: application/json
+    uses: mattermost/actions-workflows/.github/workflows/snyk-sbom.yml@8401a73d1a168f520dc08fabcfb1600dec1176ef
+    secrets: inherit