From 8df0aa427f49b900fa3aea94427d8f44e848203a Mon Sep 17 00:00:00 2001
From: Dixit <dixitb@jfrog.com>
Date: Mon, 25 Aug 2025 11:04:30 +0530
Subject: [PATCH] cleanup anchore integrations

---
 .github/workflows/anchore-sbom-evidence-example.yml | 1 +
 .github/workflows/anchore-scan-evidence-example.yml | 1 +
 examples/anchore/anchore-sbom-readme.md             | 1 +
 examples/anchore/anchore-scan-readme.md             | 1 +
 4 files changed, 4 insertions(+)

diff --git a/.github/workflows/anchore-sbom-evidence-example.yml b/.github/workflows/anchore-sbom-evidence-example.yml
index d8c9f00..5ecf76c 100644
--- a/.github/workflows/anchore-sbom-evidence-example.yml
+++ b/.github/workflows/anchore-sbom-evidence-example.yml
@@ -54,5 +54,6 @@ jobs:
               --key-alias "${{ vars.EVIDENCE_KEY_ALIAS }}" \
               --predicate ./anchore-sbom.json \
               --predicate-type http://anchore.com/syft/sbom/v1 \
+              --provider-id "anchore" \
               ${{ env.ATTACH_OPTIONAL_CUSTOM_MARKDOWN_TO_EVIDENCE == 'true' && '--markdown "anchore-sbom.md"' || '' }}
 
diff --git a/.github/workflows/anchore-scan-evidence-example.yml b/.github/workflows/anchore-scan-evidence-example.yml
index 1ca789d..d1c7531 100644
--- a/.github/workflows/anchore-scan-evidence-example.yml
+++ b/.github/workflows/anchore-scan-evidence-example.yml
@@ -56,4 +56,5 @@ jobs:
             --key-alias "${{ vars.EVIDENCE_KEY_ALIAS }}" \
             --predicate ./anchore-scan-results.sarif \
             --predicate-type http://anchore.com/grype/vulnerabilities/v1 \
+            --provider-id "anchore" \
             ${{ env.ATTACH_OPTIONAL_CUSTOM_MARKDOWN_TO_EVIDENCE == 'true' && '--markdown "anchore-results.md"' || '' }}
diff --git a/examples/anchore/anchore-sbom-readme.md b/examples/anchore/anchore-sbom-readme.md
index f1a4034..5218366 100644
--- a/examples/anchore/anchore-sbom-readme.md
+++ b/examples/anchore/anchore-sbom-readme.md
@@ -92,6 +92,7 @@ You can trigger the workflow manually from the GitHub Actions tab. The workflow
     --key "${{ secrets.PRIVATE_KEY }}" \
     --key-alias "${{ vars.EVIDENCE_KEY_ALIAS }}" \
     --predicate ./anchore-sbom.json \
+    --provider-id "anchore" \
     --predicate-type http://anchore.com/syft/sbom/v1
   ```
 
diff --git a/examples/anchore/anchore-scan-readme.md b/examples/anchore/anchore-scan-readme.md
index 7052cc8..933ef07 100644
--- a/examples/anchore/anchore-scan-readme.md
+++ b/examples/anchore/anchore-scan-readme.md
@@ -94,6 +94,7 @@ You can trigger the workflow manually from the GitHub Actions tab. The workflow
     --key "${{ secrets.PRIVATE_KEY }}" \
     --key-alias "${{ vars.EVIDENCE_KEY_ALIAS }}" \
     --predicate ./anchore-scan-results.sarif \
+    --provider-id "anchore" \
     --predicate-type http://anchore.com/grype/vulnerabilities/v1
   ```