Commit 4378120a authored by Clement Bois's avatar Clement Bois
Browse files

Merge branch 'feat/tag-creation' into 'main' 

feat: allow tags creation on project

See merge request to-be-continuous/dependency-track!15
parents 08a22ba8 280efa36

README.md

+1 −0
Original line number Diff line number Diff line
@@ -172,6 +172,7 @@ The Dependency Track template uses the following configuration. 
| :lock: `DEPTRACK_API_KEY`                                | Dependency Track API key                                                                                                 | _none_ (required)                                                           |

| `project-path` / `DEPTRACK_PROJECT_PATH`                 | Dependency Track target project path to publish SBOM files to                                                            | `$CI_PROJECT_NAMESPACE//$CI_PROJECT_PATH-{file_prefix}@$CI_COMMIT_REF_NAME` |

| `path-separator` / `DEPTRACK_PATH_SEPARATOR`             | Separator to use in project path                                                                                         | `//`                                                                        |

| `tags` / `DEPTRACK_TAGS`                                 | Tags to attach to project (comma separeted list)                                                                         | _none_                                                                      |

| `sbom-patterns` / `DEPTRACK_SBOM_PATTERNS`               | SBOM file patterns to publish (supports glob patterns)                                                                   | `**/*.cyclonedx.json **/*.cyclonedx.xml`                                    |

| `merge` / `DEPTRACK_MERGE`                               | Merge all SBOM files into one (default `false`)                                                                          | _none_ (disabled)                                                           |

| `merge-output` / `DEPTRACK_MERGE_OUTPUT`                 | Output merged SBOM file (only used with merge enabled) - _for debugging purpose_                                         | `reports/deptrack-merged.cyclonedx.json`                                    |

kicker.json

+4 −0
Original line number Diff line number Diff line
@@ -35,6 +35,10 @@ 
      "default": "//",

      "advanced": true

    },

    {

      "name": "DEPTRACK_TAGS",

      "description": "Tags to attach to project (comma separeted list)"

    },

    {

      "name": "DEPTRACK_MERGE",

      "description": "Merge all SBOM files into one",

templates/gitlab-ci-dependency-track.yml

+4 −0
Original line number Diff line number Diff line
@@ -27,6 +27,9 @@ spec: 
    path-separator:

      description: Separator to use in project path

      default: '//'

    tags:

      description: Tags to attach to project (comma separeted list)

      default: ''

    merge:

      description: Merge all SBOM files into one

      type: boolean
@@ -121,6 +124,7 @@ variables: 
  DEPTRACK_BASE_API_URL: $[[ inputs.base-api-url ]]

  DEPTRACK_PROJECT_PATH: $[[ inputs.project-path ]]

  DEPTRACK_PATH_SEPARATOR: $[[ inputs.path-separator ]]

  DEPTRACK_TAGS: $[[ inputs.tags ]]

  DEPTRACK_MERGE: $[[ inputs.merge ]]

  DEPTRACK_MERGE_OUTPUT: $[[ inputs.merge-output ]]

  DEPTRACK_PURL_MAX_LEN: $[[ inputs.purl-max-len ]]