Skip to content
This repository has been archived by the owner on Dec 11, 2024. It is now read-only.

Commit

Permalink
chore: uploads sbom as artifact
Browse files Browse the repository at this point in the history
  • Loading branch information
Dylan Ross committed Nov 14, 2024
1 parent 73a0cd4 commit 1d37ee9
Show file tree
Hide file tree
Showing 3 changed files with 38 additions and 12 deletions.
25 changes: 22 additions & 3 deletions .github/workflows/publish-and-release.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -126,9 +126,9 @@ jobs:
strategy:
fail-fast: false
matrix:
os: [macos-latest, ubuntu-latest, windows-latest]
rust_version: [stable]
experimental: [false]
os: [ macos-latest, ubuntu-latest, windows-latest ]
rust_version: [ stable ]
experimental: [ false ]
include:
- os: macos-latest
artifact_name: c2patool_mac_universal.zip
Expand All @@ -152,6 +152,12 @@ jobs:
toolchain: ${{ matrix.rust_version }}
components: llvm-tools-preview

- name: Install cargo-sbom
uses: baptiste0928/cargo-install@v3
with:
crate: cargo-sbom
version: '0.9.1'

- name: Cache Rust dependencies
uses: Swatinem/rust-cache@v2

Expand All @@ -166,3 +172,16 @@ jobs:
asset_name: ${{ matrix.uploaded_asset_name }}
tag: ${{ needs.repo-prep.outputs.new-tag }}
overwrite: true

- name: Generate SBOM
run: cargo sbom > c2patool.${{ matrix.os }}.sbom.json

- name: Upload SBOM to Github
uses: svenstaro/upload-release-action@v1-release
with:
repo_token: ${{ secrets.GITHUB_TOKEN }}
file: c2patool.${{ matrix.os }}.sbom.json
asset_name: c2patool-${{ needs.repo-prep.outputs.new-tag }}-sbom.json
tag: ${{ needs.repo-prep.outputs.new-tag }}
overwrite: true

11 changes: 9 additions & 2 deletions Cargo.lock
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

14 changes: 7 additions & 7 deletions Cargo.toml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,8 +9,8 @@ version = "0.9.12"

description = "Tool for displaying and creating C2PA manifests."
authors = [
"Gavin Peacock <[email protected]>",
"Maurice Fisher <[email protected]>",
"Gavin Peacock <[email protected]>",
"Maurice Fisher <[email protected]>",
]
license = "MIT OR Apache-2.0"
documentation = "https://opensource.contentauthenticity.org/docs/c2patool"
Expand All @@ -22,11 +22,11 @@ repository = "https://github.com/contentauth/c2patool"

[dependencies]
anyhow = "1.0"
c2pa = { version = "0.37.0", features = [
"fetch_remote_manifests",
"file_io",
"add_thumbnails",
"pdf",
c2pa = { version = "0.39.0", features = [
"fetch_remote_manifests",
"file_io",
"add_thumbnails",
"pdf",
] }
clap = { version = "4.5.10", features = ["derive", "env"] }
env_logger = "0.11.4"
Expand Down

0 comments on commit 1d37ee9

Please sign in to comment.