[ODLPARENT-280] Generate an SBOM for artifacts - OpenDaylight JIRA

XML

Word

Printable

Details

Type: New Feature
Status: Resolved
Priority: Medium
Resolution: Done
Affects Version/s: None
Fix Version/s: 10.0.0, 9.0.16
Component/s: General
Labels:
None

Description

As part of improving OpenDaylight's inputs into supply chain security, generate an SBOM for all artifacts built by maven, so they can be signed and published to Maven Central.

Attachments

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

#	Subject	Branch	Project	Status	CR	V
99743,4	Generate CycloneDX aggregate SBOMs by default	master	odlparent	Status: MERGED	+2	+1
102813,1	Generate CycloneDX aggregate SBOMs by default	9.0.x	odlparent	Status: MERGED	+2	+1

Activity

People

Assignee:: Robert Varga

Reporter:: Robert Varga

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 24/Feb/22 8:07 AM

Updated:: 20/Oct/22 10:46 AM

Resolved:: 24/Feb/22 10:46 AM