Adding Chainloop #43
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This workflow will build a Java project with Maven, and cache/restore any dependencies to improve the workflow execution time | ||
| # For more information see: https://help.github.com/actions/language-and-framework-guides/building-and-testing-java-with-maven | ||
| name: Java CI with Maven | ||
| on: | ||
| push: | ||
| branches: [ main ] | ||
| pull_request: | ||
| branches: [ main ] | ||
| jobs: | ||
| chainloop_init: | ||
| name: Chainloop Init | ||
| uses: chainloop-dev/labs/.github/workflows/chainloop_init.yml@797374fdec9dbc391c87778c34053365fa026980 | ||
| secrets: | ||
| api_token: ${{ secrets.CHAINLOOP_TOKEN }} | ||
| with: | ||
| chainloop_labs_branch: 797374fdec9dbc391c87778c34053365fa026980 | ||
| contract_revision: 3 | ||
| build: | ||
| runs-on: ubuntu-latest | ||
| strategy: | ||
| matrix: | ||
| java: [ '17' ] | ||
| steps: | ||
| - uses: actions/checkout@v4 | ||
| - name: Set up JDK ${{matrix.java}} | ||
| uses: actions/setup-java@v4 | ||
| with: | ||
| java-version: ${{matrix.java}} | ||
| distribution: 'adopt' | ||
| cache: maven | ||
| - name: Build with Maven Wrapper | ||
| run: ./mvnw -B package | ||
| # Upload the built jar as an artifact so that it can be used in the Chainloop job | ||
| - uses: actions/upload-artifact@v4 | ||
| with: | ||
| name: artifacts | ||
| path: target/*.jar | ||
| collect-metadata: | ||
| runs-on: ubuntu-latest | ||
| name: Generate metadata | ||
| needs: build | ||
| steps: | ||
| - name: Download all workflow run artifacts | ||
| uses: actions/download-artifact@v4 | ||
| - name: Generate metadata | ||
| run: | | ||
| mkdir -p metadata | ||
| - uses: anchore/sbom-action@v0 | ||
| with: | ||
| file: artifacts/*.jar | ||
| format: cyclonedx-json | ||
| output-file: ./metadata/sbom.cyclonedx.json | ||
| upload-artifact: false | ||
| - uses: actions/upload-artifact@v4 | ||
| with: | ||
| name: metadata | ||
| path: metadata/* | ||
| chainloop_push: | ||
| name: Chainloop Push | ||
| uses: chainloop-dev/labs/.github/workflows/chainloop_push.yml@797374fdec9dbc391c87778c34053365fa026980 | ||
|
Check failure on line 70 in .github/workflows/maven-build.yml
|
||
| needs: | ||
| - collect-metadata | ||
| - chainloop_init | ||
| secrets: | ||
| api_token: ${{ secrets.CHAINLOOP_TOKEN }} | ||
| with: | ||
| attestation_name: "petclinic" | ||
| chainloop_labs_branch: 797374fdec9dbc391c87778c34053365fa026980 | ||
