Skip to content

Commit

Permalink
Use full-report convenience action for SSDLC reports (#1589)
Browse files Browse the repository at this point in the history
  • Loading branch information
alcaeus authored Jun 20, 2024
1 parent 11d2298 commit 4f3400b
Showing 1 changed file with 3 additions and 19 deletions.
22 changes: 3 additions & 19 deletions .github/workflows/release.yml
Original file line number Diff line number Diff line change
Expand Up @@ -219,33 +219,17 @@ jobs:
- name: Download all release artifacts
run: gh release download ${{ inputs.version }} --dir ${{ env.RELEASE_ASSETS }}

- name: "Generate authorized publication document"
uses: mongodb-labs/drivers-github-tools/authorized-pub@v2
- name: "Generate SSDLC Reports"
uses: mongodb-labs/drivers-github-tools/full-report@v2
with:
product_name: "MongoDB PHP Driver (extension)"
release_version: ${{ inputs.version }}
filenames: "${{ env.RELEASE_ASSETS }}/*"
token: ${{ env.GH_TOKEN }}

- name: "Download SBOM file from Silk"
uses: mongodb-labs/drivers-github-tools/sbom@v2
with:
dist_filenames: "${{ env.RELEASE_ASSETS }}/*"
silk_asset_group: mongodb-php-driver-extension

- name: "Upload SBOM as release artifact"
run: gh release upload ${{ inputs.version }} ${{ env.S3_ASSETS }}/cyclonedx.sbom.json

- name: "Generate SARIF report from code scanning alerts"
uses: mongodb-labs/drivers-github-tools/code-scanning-export@v2
with:
ref: ${{ inputs.version }}
output-file: ${{ env.S3_ASSETS }}/code-scanning-alerts.json

- name: "Generate compliance report"
uses: mongodb-labs/drivers-github-tools/compliance-report@v2
with:
token: ${{ env.GH_TOKEN }}

- name: Upload S3 assets
uses: mongodb-labs/drivers-github-tools/upload-s3-assets@v2
with:
Expand Down

0 comments on commit 4f3400b

Please sign in to comment.