This is an automated email from the ASF dual-hosted git repository.
elecharny pushed a commit to branch 2.2.X
in repository https://gitbox.apache.org/repos/asf/mina.git
The following commit(s) were added to refs/heads/2.2.X by this push:
new 23e6ee17b Added the SBOM generaion plugin
23e6ee17b is described below
commit 23e6ee17bae46bb8e7a76dd7aeb508ec89e76a25
Author: emmanuel lecharny <[email protected]>
AuthorDate: Tue Oct 29 10:37:57 2024 +0100
Added the SBOM generaion plugin
---
pom.xml | 26 ++++++++++++++++++++++++++
1 file changed, 26 insertions(+)
diff --git a/pom.xml b/pom.xml
index 2c31d281d..bc7296306 100644
--- a/pom.xml
+++ b/pom.xml
@@ -90,6 +90,9 @@
<!-- Make Java 8 javadoc lint to shut the f*** up... -->
<!-- additionalparam>-Xdoclint:none</additionalparam -->
+ <!-- SBOM generation versions -->
+ <version.cyclonedx>2.9.0</version.cyclonedx>
+
<!-- Maven Plugins -->
<version.apache.rat.plugin>0.16.1</version.apache.rat.plugin>
<version.api.plugin>3.6.3</version.api.plugin>
@@ -787,6 +790,24 @@
</lifecycleMappingMetadata>
</configuration>
</plugin>
+
+ <plugin>
+ <groupId>org.cyclonedx</groupId>
+ <artifactId>cyclonedx-maven-plugin</artifactId>
+ <version>${version.cyclonedx}</version>
+ <executions>
+ <execution>
+ <id>make-bom</id>
+ <phase>package</phase>
+ <goals>
+ <goal>makeAggregateBom</goal>
+ </goals>
+ </execution>
+ </executions>
+ <configuration>
+
<outputName>${project.artifactId}-${project.version}-bom</outputName>
+ </configuration>
+ </plugin>
</plugins>
</pluginManagement>
@@ -879,6 +900,11 @@
</dependency>
</dependencies>
</plugin>
+
+ <plugin>
+ <groupId>org.cyclonedx</groupId>
+ <artifactId>cyclonedx-maven-plugin</artifactId>
+ </plugin>
</plugins>
</build>
