Introduction

This GitHub action wraps the cdxgen tool for generating Software Bill-of-Materials (BOM) for supported projects. Optionally, the generated file can be exported to dependency track or AppThreat server for further oss analysis.

Usage

Simple usage, just print the xml to the console

uses: AppThreat/cdxgen-action@v1

Specifiy parameters for automatic submission to a dependency track or AppThreat server

- uses: AppThreat/cdxgen-action@v1
  with:
    output: "./reports/bom.xml"
    serverUrl: "https://deptrack.appthreat.io"
    apiKey: ${{ secrets.apiKey }}

Submit to server as well as store artefacts

- uses: AppThreat/cdxgen-action@v1
  with:
    output: "./reports/bom.xml"
    serverUrl: "https://deptrack.appthreat.io"
    apiKey: ${{ secrets.apiKey }}

- uses: actions/upload-artifact@v1
  with:
    name: reports
    path: reports

Name		Name	Last commit message	Last commit date
Latest commit History 15 Commits
node_modules		node_modules
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
action.yml		action.yml
index.js		index.js
package-lock.json		package-lock.json
package.json		package.json

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Introduction

Usage

About

Releases 2

Sponsor this project

Packages

Languages

License

CycloneDX/cdxgen-action

Folders and files

Latest commit

History

Repository files navigation

Introduction

Usage

About

Topics

Resources

License

Code of conduct

Security policy

Stars

Watchers

Forks

Releases 2

Sponsor this project

Packages 0

Languages

Packages