Skip to content

Commit 2fa398e

Browse files
timbastintimbastin
committed
fix: saving sbom, sarif report and vex to /tmp folder
1 parent c5e842d commit 2fa398e

1 file changed

Lines changed: 3 additions & 3 deletions

File tree

.github/workflows/attest.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -90,7 +90,7 @@ jobs:
9090
with:
9191
args: >
9292
sh -c "
93-
slug=$(devguard-scanner slug ${{ github.ref_name }}) && devguard-scanner curl '${{ inputs.api-url }}/api/v1/organizations/${{ inputs.asset-name }}/refs/'$slug'/artifacts/${{ env.API_ARTIFACT_NAME }}/sbom.json/' --token='${{ secrets.devguard-token }}' > sbom.json
93+
slug=$(devguard-scanner slug ${{ github.ref_name }}) && devguard-scanner curl '${{ inputs.api-url }}/api/v1/organizations/${{ inputs.asset-name }}/refs/'$slug'/artifacts/${{ env.API_ARTIFACT_NAME }}/sbom.json/' --token='${{ secrets.devguard-token }}'> /tmp/sbom.json
9494
"
9595
env:
9696
API_ARTIFACT_NAME: ${{ env.API_ARTIFACT_NAME }}
@@ -99,7 +99,7 @@ jobs:
9999
with:
100100
args: >
101101
sh -c "
102-
slug=$(devguard-scanner slug ${{ github.ref_name }}) && devguard-scanner curl '${{ inputs.api-url }}/api/v1/organizations/${{ inputs.asset-name }}/refs/'$slug'/artifacts/${{ env.API_ARTIFACT_NAME }}/vex.json/' --token='${{ secrets.devguard-token }}' > vex.json
102+
slug=$(devguard-scanner slug ${{ github.ref_name }}) && devguard-scanner curl '${{ inputs.api-url }}/api/v1/organizations/${{ inputs.asset-name }}/refs/'$slug'/artifacts/${{ env.API_ARTIFACT_NAME }}/vex.json/' --token='${{ secrets.devguard-token }}'> /tmp/vex.json
103103
"
104104
env:
105105
API_ARTIFACT_NAME: ${{ env.API_ARTIFACT_NAME }}
@@ -108,7 +108,7 @@ jobs:
108108
with:
109109
args: >
110110
sh -c "
111-
slug=$(devguard-scanner slug ${{ github.ref_name }}) && devguard-scanner curl '${{ inputs.api-url }}/api/v1/organizations/${{ inputs.asset-name }}/refs/'$slug'/sarif.json' --token='${{ secrets.devguard-token }}' > sarif.json
111+
slug=$(devguard-scanner slug ${{ github.ref_name }}) && devguard-scanner curl '${{ inputs.api-url }}/api/v1/organizations/${{ inputs.asset-name }}/refs/'$slug'/sarif.json' --token='${{ secrets.devguard-token }}'> /tmp/sarif.json
112112
"
113113
- name: Attest SBOM
114114
uses: docker://ghcr.io/l3montree-dev/devguard/scanner:main

0 commit comments

Comments
 (0)