Skip to content

Publish SBOM for Flux and the GitOps Toolkit components #2302

New issue
New issue
Closed
Closed
Publish SBOM for Flux and the GitOps Toolkit components#2302
Assignees
stefanprodan
Labels
area/ciCI related issues and pull requestsenhancementNew feature or request
@stefanprodan

Description

@stefanprodan
stefanprodan
opened on Jan 18, 2022

We should generate and publish a Software Bill of Materials (SBOM) as a release artifact for all Flux projects. To generate a SBOM for Flux Go modules and their dependencies, we can use Syft and GoReleaser. The published SBOM should be in SPDX format.

Projects:

  • flux2
  • source-controller
  • kustomize-controller
  • helm-controller
  • notification-controller
  • image-reflector-controller
  • image-automation-controller
  • source-watcher

Metadata

Metadata

Assignees

Labels

area/ciCI related issues and pull requestsenhancementNew feature or request

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions