Skip to content

GitHub action that uses the vcn tool from CodeNotary.com to authenticate the bill of materials (BoM) for Java (Maven) projects. It accepts directories or JARs containing a pom.xml file as input.

License

Notifications You must be signed in to change notification settings

codenotary/vcn-authenticate-bom-java-github-action

Use this GitHub action with your project
Add this Action to an existing workflow or create a new one
View on Marketplace

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

vcn-authenticate-bom-java-github-action

GitHub action that uses the vcn tool from CodeNotary.com to authenticate the the bill of materials (BoM) for Java (Maven) projects. It accepts directories or JARs containing a pom.xml file as input.

How to use it

Have a look in the provided example workflow.

💡 The underlying vcn Docker image can also be run directly (an example is also provided in the same example workflow). This way one can specify any vcn 💥 flag, not just the ones exposed by the GitHub action.

👉 This link lists all the other GitHub actions that are available from CodeNotary.

About

GitHub action that uses the vcn tool from CodeNotary.com to authenticate the bill of materials (BoM) for Java (Maven) projects. It accepts directories or JARs containing a pom.xml file as input.

Resources

License

Stars

Watchers

Forks

Packages

No packages published

Languages