Skip to content
This repository was archived by the owner on Jun 26, 2026. It is now read-only.

Add SBOM scanning with Trivy#147

Merged
ntnn merged 1 commit into
platform-mesh:mainfrom
xmudrii:sbom-scan
Jun 22, 2026
Merged

Add SBOM scanning with Trivy#147
ntnn merged 1 commit into
platform-mesh:mainfrom
xmudrii:sbom-scan

Conversation

@xmudrii

@xmudrii xmudrii commented Jun 22, 2026

Copy link
Copy Markdown
Contributor

This PR adds SBOM scanning with Trivy to the release workflow. This job will take the latest SBOM, scan it for vulnerabilities in the code and the image, and upload all findings to the Security tab. From there, the platform-mesh/security team will be coordinating fixing issues that are found.

More information can be found in platform-mesh/backlog#226

On-behalf-of: @SAP marko.mudrinic@sap.com
Signed-off-by: Marko Mudrinić <mudrinic.mare@gmail.com>
@xmudrii xmudrii requested review from a team as code owners June 22, 2026 11:51
@ntnn ntnn enabled auto-merge (squash) June 22, 2026 12:18
@ntnn ntnn merged commit 95f2e61 into platform-mesh:main Jun 22, 2026
7 checks passed
@xmudrii xmudrii deleted the sbom-scan branch June 22, 2026 14:57
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants