Generate software bill of materials as part of the package builds. #3702

2025-02-25 18:55:31 -06:00 · 2023-08-03 16:08:59 +05:30
parent 1a7a23de3f
commit 48bfc66048
7 changed files with 22 additions and 1 deletions
--- a/pkg/mac/build-functions.sh
+++ b/pkg/mac/build-functions.sh
@@ -320,6 +320,11 @@ _complete_bundle() {
    chmod -R og-w "${BUNDLE_DIR}"
 }

+_generate_sbom() {
+   echo "Generating SBOM..."
+   syft "${BUNDLE_DIR}/Contents/" -o cyclonedx-json > "${BUNDLE_DIR}/Contents/cyclonedx.json"
+}
+
 _codesign_binaries() {
    if [ "${CODESIGN}" -eq 0 ]; then
        return
@@ -485,4 +490,4 @@ _notarize_pkg() {
    fi

    echo "Notarization completed successfully."
-}
+}
--- a/pkg/mac/build.sh
+++ b/pkg/mac/build.sh
@@ -66,6 +66,7 @@ _build_runtime
 _create_python_env
 _build_docs
 _complete_bundle
+_generate_sbom
 _codesign_binaries
 _codesign_bundle
 _create_dmg