Skip to content

Generate an SBOM for the javaagent artifact #11075

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 9 commits into from
May 22, 2024
Merged

Generate an SBOM for the javaagent artifact #11075

merged 9 commits into from
May 22, 2024

Conversation

tylerbenson
Copy link
Member

We have been asked to generate SBOMs for published assets that are either natively compiled, or have vendored/embedded dependencies. In java, this mainly applies to the javaagent.

Reference Security SIG's recommendations for more details.

@tylerbenson tylerbenson mentioned this pull request Apr 9, 2024
Closed
@tylerbenson
Generate an SBOM for the javaagent artifact
6ad9e70 
We have been asked to generate SBOMs for published assets that are either natively compiled, or have vendored/embedded dependencies.  In java, this mainly applies to the javaagent.
@tylerbenson tylerbenson marked this pull request as ready for review April 9, 2024 17:27
@tylerbenson tylerbenson requested a review from a team April 9, 2024 17:27
laurit
laurit reviewed Apr 18, 2024
View reviewed changes
@tylerbenson
Remove redundant zip from name.
13f4062
@tylerbenson
Simplify sbom gathering
64fea04 
Since there's only one sbom, do a simple copy instead of the complicated find.
@tylerbenson
Merge remote-tracking branch 'upstream/main' into tyler/sbom
7287fae 
# Conflicts:
#	.github/workflows/build-common.yml
#	.github/workflows/release.yml
trask
trask reviewed Apr 23, 2024
View reviewed changes
@trask trask added this to the v2.4.0 milestone May 9, 2024
trask
trask reviewed May 17, 2024
View reviewed changes
@trask trask modified the milestones: v2.4.0, v2.5.0 May 17, 2024
trask
trask reviewed May 21, 2024
View reviewed changes
@laurit laurit merged commit 69e3e0b into open-telemetry:main May 22, 2024
53 checks passed
@tylerbenson tylerbenson deleted the tyler/sbom branch May 22, 2024 15:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@trask trask trask approved these changes

@laurit laurit laurit approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
v2.5.0
Development

Successfully merging this pull request may close these issues.
3 participants
@tylerbenson @trask @laurit