From f58044e0748638cb30c04bcb716afdc706ff3b29 Mon Sep 17 00:00:00 2001 From: Yannik Daellenbach Date: Mon, 5 Feb 2024 15:20:46 +0100 Subject: [PATCH] Use evidence --- .github/workflows/sbom.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sbom.yml b/.github/workflows/sbom.yml index 0fd49ad0d..9a5c70972 100644 --- a/.github/workflows/sbom.yml +++ b/.github/workflows/sbom.yml @@ -24,7 +24,7 @@ jobs: - name: 'Generate SBOM for Node.js dependencies' uses: docker://ghcr.io/cyclonedx/cdxgen:v10.0.4 with: - args: --spec-version 1.4 -p -o bom-npm.json -t js . + args: --spec-version 1.4 -p -o bom-npm.json -t js --evidence . - name: 'Merge Ruby and Node.js SBOMs' uses: docker://cyclonedx/cyclonedx-cli:0.25.0