I'll do that later and pass to one week. Thanks
Il mer 25 gen 2023, 12:01 Otavio Rodolfo Piske ha
scritto:
> Hello,
>
> Thanks! Yeah, I think updating it weekly should help!
>
> Obs.: The problem with these commits is that they increase the time to run
> bisect. So, sometimes when bisecting, my
Hello,
Thanks! Yeah, I think updating it weekly should help!
Obs.: The problem with these commits is that they increase the time to run
bisect. So, sometimes when bisecting, my build machines waste several
minutes (sometimes hours) building Camel because those commits get in the
way of the bisect
If you don't use the sbom profile this won't be generated and won't be
updated
Il mer 25 gen 2023, 11:44 Andrea Cosentino ha scritto:
> There is an action running every night. We could for example run it once a
> week.
>
> The only way to enable the generation is through a profile. Sometimes I d
There is an action running every night. We could for example run it once a
week.
The only way to enable the generation is through a profile. Sometimes I do
myself, but in general it should be only the action.
This kind of information should be tracked regularly, only at release time
makes probabl
Thanks Andrea, this looks really good.
My only comment / concern is regarding how we are generating it.
Would it be possible/feasible to generate this only as part of the release
process? Or, optionally, by manually invoking a plugin? One concern that I
have is that we are currently generating it
project.
> If you run it for every module, it does make the build take a LOT longer
> ;-)
>
> Chris
>
> From: Andrea Cosentino
> Date: Thursday, 19. January 2023 at 12:53
> To: dev
> Subject: Re: [HEADS-UP] SBOM Generation
> Yes, it's not harming just a problem
. January 2023 at 12:53
To: dev
Subject: Re: [HEADS-UP] SBOM Generation
Yes, it's not harming just a problem with bundle. We can tweak and exclude
it if needed.
There are even trouble with atlassian repository.
But the generation will complete correctly
Il gio 19 gen 2023, 12:51 Claus Ibsen ha sc
Yes, it's not harming just a problem with bundle. We can tweak and exclude
it if needed.
There are even trouble with atlassian repository.
But the generation will complete correctly
Il gio 19 gen 2023, 12:51 Claus Ibsen ha scritto:
> Hi
>
> Thanks so running this build and noticed some WARN/ER
Hi
Thanks so running this build and noticed some WARN/ERROR due to OSGi. I
guess snappy-java pom.xml have bundle which is not a well-known,
as jar is the default and wide-spread use.
Caused by: org.apache.maven.model.building.ModelBuildingException: 1
problem was encountered while building the ef
Hello,
Essentially is enough to run a maven install.
mvn install -DskipTests -Psbom
The aggregate sbom will be in target folder at root level.
We could tune it and find a way to automatize this, for example through a
gh action.
Il giorno gio 19 gen 2023 alle ore 12:43 Claus Ibsen
ha scritto
Hi Andrea
How do you generate the sbom file? What command do you run from the root
folder of Camel source code?
And should we have this documented somewhere.
On Thu, Jan 19, 2023 at 11:42 AM Andrea Cosentino wrote:
> Hello,
>
> Moving to Camel 4.x I think it's time to have a look at SBOM genera
Hello,
Moving to Camel 4.x I think it's time to have a look at SBOM generation and
so on.
I added a profile named sbom to the root POM.
It will generate two files in the target folder camel-sbom.json and
camel-sbom.xml.
For the moment I choose to copy them in camel-sbom folder manually, so we
c
12 matches
Mail list logo
