mirror of
https://github.com/siderolabs/extensions.git
synced 2025-08-06 06:17:11 +02:00
docs: add SBOM for container-runtimes
Partial for #10940 Signed-off-by: Mateusz Urbanek <mateusz.urbanek@siderolabs.com>
This commit is contained in:
parent
c479d91284
commit
c66e678b2b
@ -34,7 +34,14 @@ steps:
|
|||||||
cp -r /rootfs/ /extensions-validator-rootfs/rootfs
|
cp -r /rootfs/ /extensions-validator-rootfs/rootfs
|
||||||
cp /pkg/manifest.yaml /extensions-validator-rootfs/manifest.yaml
|
cp /pkg/manifest.yaml /extensions-validator-rootfs/manifest.yaml
|
||||||
/extensions-validator validate --rootfs=/extensions-validator-rootfs --pkg-name="${PKG_NAME}"
|
/extensions-validator validate --rootfs=/extensions-validator-rootfs --pkg-name="${PKG_NAME}"
|
||||||
|
sbom:
|
||||||
|
outputPath: /rootfs/usr/local/share/spdx/crun.spdx.json
|
||||||
|
version: {{ .CRUN_VERSION }}
|
||||||
|
cpes:
|
||||||
|
- cpe:2.3:a:crun_project:crun:{{ .CRUN_VERSION }}:*:*:*:*:*:*:*
|
||||||
|
licenses:
|
||||||
|
- GPL-2.0
|
||||||
|
- LGPL-2.1
|
||||||
finalize:
|
finalize:
|
||||||
- from: /rootfs
|
- from: /rootfs
|
||||||
to: /rootfs
|
to: /rootfs
|
||||||
|
@ -45,6 +45,11 @@ steps:
|
|||||||
cp -r /rootfs/ /extensions-validator-rootfs/rootfs
|
cp -r /rootfs/ /extensions-validator-rootfs/rootfs
|
||||||
cp /pkg/manifest.yaml /extensions-validator-rootfs/manifest.yaml
|
cp /pkg/manifest.yaml /extensions-validator-rootfs/manifest.yaml
|
||||||
/extensions-validator validate --rootfs=/extensions-validator-rootfs --pkg-name="${PKG_NAME}"
|
/extensions-validator validate --rootfs=/extensions-validator-rootfs --pkg-name="${PKG_NAME}"
|
||||||
|
sbom:
|
||||||
|
outputPath: /rootfs/usr/local/share/spdx/ecr-credential-provider.spdx.json
|
||||||
|
version: {{ .CLOUD_PROVIDER_AWS_VERSION }}
|
||||||
|
licenses:
|
||||||
|
- Apache-2.0
|
||||||
finalize:
|
finalize:
|
||||||
- from: /rootfs
|
- from: /rootfs
|
||||||
to: /rootfs
|
to: /rootfs
|
||||||
|
@ -57,6 +57,13 @@ steps:
|
|||||||
cp -r /rootfs/ /extensions-validator-rootfs/rootfs
|
cp -r /rootfs/ /extensions-validator-rootfs/rootfs
|
||||||
cp /pkg/manifest.yaml /extensions-validator-rootfs/manifest.yaml
|
cp /pkg/manifest.yaml /extensions-validator-rootfs/manifest.yaml
|
||||||
/extensions-validator validate --rootfs=/extensions-validator-rootfs --pkg-name="${PKG_NAME}"
|
/extensions-validator validate --rootfs=/extensions-validator-rootfs --pkg-name="${PKG_NAME}"
|
||||||
|
sbom:
|
||||||
|
outputPath: /rootfs/usr/local/share/spdx/gvisor.spdx.json
|
||||||
|
version: {{ .GVISOR_VERSION }}
|
||||||
|
cpes:
|
||||||
|
- cpe:2.3:a:google:gvisor:{{ .GVISOR_VERSION }}:*:*:*:*:*:*:*
|
||||||
|
licenses:
|
||||||
|
- Apache-2.0
|
||||||
finalize:
|
finalize:
|
||||||
- from: /rootfs
|
- from: /rootfs
|
||||||
to: /rootfs
|
to: /rootfs
|
||||||
|
@ -69,6 +69,13 @@ steps:
|
|||||||
cp -r /rootfs/ /extensions-validator-rootfs/rootfs
|
cp -r /rootfs/ /extensions-validator-rootfs/rootfs
|
||||||
cp /pkg/manifest.yaml /extensions-validator-rootfs/manifest.yaml
|
cp /pkg/manifest.yaml /extensions-validator-rootfs/manifest.yaml
|
||||||
/extensions-validator validate --rootfs=/extensions-validator-rootfs --pkg-name="${PKG_NAME}"
|
/extensions-validator validate --rootfs=/extensions-validator-rootfs --pkg-name="${PKG_NAME}"
|
||||||
|
sbom:
|
||||||
|
outputPath: /rootfs/usr/local/share/spdx/kata-containers.spdx.json
|
||||||
|
version: {{ .KATA_CONTAINERS_VERSION }}
|
||||||
|
cpes:
|
||||||
|
- cpe:2.3:a:katacontainers:kata_containers:{{ .KATA_CONTAINERS_VERSION }}:*:*:*:*:*:*:*
|
||||||
|
licenses:
|
||||||
|
- Apache-2.0
|
||||||
finalize:
|
finalize:
|
||||||
- from: /rootfs
|
- from: /rootfs
|
||||||
to: /rootfs
|
to: /rootfs
|
||||||
|
@ -33,6 +33,11 @@ steps:
|
|||||||
cp -r /rootfs/ /extensions-validator-rootfs/rootfs
|
cp -r /rootfs/ /extensions-validator-rootfs/rootfs
|
||||||
cp /pkg/manifest.yaml /extensions-validator-rootfs/manifest.yaml
|
cp /pkg/manifest.yaml /extensions-validator-rootfs/manifest.yaml
|
||||||
/extensions-validator validate --rootfs=/extensions-validator-rootfs --pkg-name="${PKG_NAME}"
|
/extensions-validator validate --rootfs=/extensions-validator-rootfs --pkg-name="${PKG_NAME}"
|
||||||
|
sbom:
|
||||||
|
outputPath: /rootfs/usr/local/share/spdx/spin.spdx.json
|
||||||
|
version: {{ .SPIN_VERSION }}
|
||||||
|
licenses:
|
||||||
|
- Apache-2.0
|
||||||
finalize:
|
finalize:
|
||||||
- from: /rootfs
|
- from: /rootfs
|
||||||
to: /rootfs
|
to: /rootfs
|
||||||
|
@ -60,6 +60,11 @@ steps:
|
|||||||
cp -r /rootfs/ /extensions-validator-rootfs/rootfs
|
cp -r /rootfs/ /extensions-validator-rootfs/rootfs
|
||||||
cp /pkg/manifest.yaml /extensions-validator-rootfs/manifest.yaml
|
cp /pkg/manifest.yaml /extensions-validator-rootfs/manifest.yaml
|
||||||
/extensions-validator validate --rootfs=/extensions-validator-rootfs --pkg-name="${PKG_NAME}"
|
/extensions-validator validate --rootfs=/extensions-validator-rootfs --pkg-name="${PKG_NAME}"
|
||||||
|
sbom:
|
||||||
|
outputPath: /rootfs/usr/local/share/spdx/stargz-snapshotter.spdx.json
|
||||||
|
version: {{ .STARGZ_SNAPSHOTTER_VERSION }}
|
||||||
|
licenses:
|
||||||
|
- Apache-2.0
|
||||||
finalize:
|
finalize:
|
||||||
- from: /rootfs
|
- from: /rootfs
|
||||||
to: /rootfs
|
to: /rootfs
|
||||||
|
@ -33,6 +33,11 @@ steps:
|
|||||||
cp -r /rootfs/ /extensions-validator-rootfs/rootfs
|
cp -r /rootfs/ /extensions-validator-rootfs/rootfs
|
||||||
cp /pkg/manifest.yaml /extensions-validator-rootfs/manifest.yaml
|
cp /pkg/manifest.yaml /extensions-validator-rootfs/manifest.yaml
|
||||||
/extensions-validator validate --rootfs=/extensions-validator-rootfs --pkg-name="${PKG_NAME}"
|
/extensions-validator validate --rootfs=/extensions-validator-rootfs --pkg-name="${PKG_NAME}"
|
||||||
|
sbom:
|
||||||
|
outputPath: /rootfs/usr/local/share/spdx/wasmedge.spdx.json
|
||||||
|
version: {{ .WASMEDGE_VERSION }}
|
||||||
|
licenses:
|
||||||
|
- Apache-2.0
|
||||||
finalize:
|
finalize:
|
||||||
- from: /rootfs
|
- from: /rootfs
|
||||||
to: /rootfs
|
to: /rootfs
|
||||||
|
@ -34,6 +34,11 @@ steps:
|
|||||||
cp -r /rootfs/ /extensions-validator-rootfs/rootfs
|
cp -r /rootfs/ /extensions-validator-rootfs/rootfs
|
||||||
cp /pkg/manifest.yaml /extensions-validator-rootfs/manifest.yaml
|
cp /pkg/manifest.yaml /extensions-validator-rootfs/manifest.yaml
|
||||||
/extensions-validator validate --rootfs=/extensions-validator-rootfs --pkg-name="${PKG_NAME}"
|
/extensions-validator validate --rootfs=/extensions-validator-rootfs --pkg-name="${PKG_NAME}"
|
||||||
|
sbom:
|
||||||
|
outputPath: /rootfs/usr/local/share/spdx/youki.spdx.json
|
||||||
|
version: {{ .YOUKI_VERSION }}
|
||||||
|
licenses:
|
||||||
|
- Apache-2.0
|
||||||
|
|
||||||
finalize:
|
finalize:
|
||||||
- from: /rootfs
|
- from: /rootfs
|
||||||
|
Loading…
Reference in New Issue
Block a user