Skip to content

test: trigger SBOM quality gate#6

Merged
mrdavidlaing merged 2 commits intomainfrom
test/sbom-quality-gate
Mar 17, 2026
Merged

test: trigger SBOM quality gate#6
mrdavidlaing merged 2 commits intomainfrom
test/sbom-quality-gate

Conversation

@mrdavidlaing
Copy link
Contributor

@mrdavidlaing mrdavidlaing commented Mar 17, 2026

Summary

  • Adds a trivial shellcheck directive comment to bin/patch-sbom-root to trigger the SBOM generate and quality gate workflows
  • This is a test PR to verify the new sbom-quality-gate.yml workflow fires correctly on PRs

What to check

  • sbom-generate.yml triggers on the PR (path trigger: bin/patch-sbom-root)
  • sbom-quality-gate.yml triggers and runs its checks
  • Quality gate status check appears on the PR

Cleanup

Close and delete this branch after verifying the workflows run.

🤖 Generated with Claude Code

@claude
☕ chore: add shellcheck directive to patch-sbom-root
da3f2d1 
Trivial change to trigger SBOM quality gate workflow for testing.

Co-Authored-By: Yakriel (Claude) <noreply@anthropic.com>
@github-actions
Copy link

github-actions bot commented Mar 17, 2026
edited
Loading

SBOM Quality Gate

Image Score Baseline Delta Status
minio-client null null 0 pass
minio null null 0 pass
postgres null null 0 pass
redis null null 0 pass
sbomify-app null null 0 pass
sbomify-caddy-dev null null 0 pass
sbomify-keycloak null null 0 pass
sbomify-minio-init null null 0 pass
Diff: minio-client

📦 SBOM Diff Report

SBOM Comparison

Before After
File minio-client.enriched.cdx.json minio-client.enriched.cdx.json
File Size 274 KB 274 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 16 16
PURL Coverage 100.0% 100.0%
License Coverage 56.2% 56.2%
Hash Coverage 0.0% 0.0%
CPE Coverage 43.8% 43.8%

Key Findings

  • 🔄 0 version changes among 16 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (16) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T11:26:47Z

Diff: minio

📦 SBOM Diff Report

SBOM Comparison

Before After
File minio.enriched.cdx.json minio.enriched.cdx.json
File Size 275 KB 275 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 17 17
PURL Coverage 100.0% 100.0%
License Coverage 52.9% 52.9%
Hash Coverage 0.0% 0.0%
CPE Coverage 41.2% 41.2%

Key Findings

  • 🔄 0 version changes among 17 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (17) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T11:26:45Z

Diff: postgres

📦 SBOM Diff Report

SBOM Comparison

Before After
File postgres.enriched.cdx.json postgres.enriched.cdx.json
File Size 278 KB 278 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 25 25
PURL Coverage 100.0% 100.0%
License Coverage 40.0% 40.0%
Hash Coverage 0.0% 0.0%
CPE Coverage 32.0% 32.0%

Key Findings

  • 🔄 0 version changes among 25 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (25) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T11:26:32Z

Diff: redis

📦 SBOM Diff Report

SBOM Comparison

Before After
File redis.enriched.cdx.json redis.enriched.cdx.json
File Size 338 KB 338 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 58 58
PURL Coverage 100.0% 100.0%
License Coverage 25.9% 25.9%
Hash Coverage 0.0% 0.0%
CPE Coverage 19.0% 19.0%

Key Findings

  • 🔄 0 version changes among 58 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (58) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T11:26:29Z

Diff: sbomify-app

📦 SBOM Diff Report

SBOM Comparison

Before After
File sbomify-app.enriched.cdx.json sbomify-app.enriched.cdx.json
File Size 380 KB 380 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 208 208
PURL Coverage 100.0% 100.0%
License Coverage 6.2% 6.2%
Hash Coverage 0.0% 0.0%
CPE Coverage 4.8% 4.8%

Key Findings

  • 🔄 0 version changes among 208 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (208) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T11:26:56Z

Diff: sbomify-caddy-dev

📦 SBOM Diff Report

SBOM Comparison

Before After
File sbomify-caddy-dev.enriched.cdx.json sbomify-caddy-dev.enriched.cdx.json
File Size 253 KB 253 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 12 12
PURL Coverage 100.0% 100.0%
License Coverage 41.7% 41.7%
Hash Coverage 0.0% 0.0%
CPE Coverage 33.3% 33.3%

Key Findings

  • 🔄 0 version changes among 12 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (12) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T11:26:35Z

Diff: sbomify-keycloak

📦 SBOM Diff Report

SBOM Comparison

Before After
File sbomify-keycloak.enriched.cdx.json sbomify-keycloak.enriched.cdx.json
File Size 326 KB 326 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 32 32
PURL Coverage 100.0% 100.0%
License Coverage 46.9% 46.9%
Hash Coverage 0.0% 0.0%
CPE Coverage 37.5% 37.5%

Key Findings

  • 🔄 0 version changes among 32 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (32) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T11:26:55Z

Diff: sbomify-minio-init

📦 SBOM Diff Report

SBOM Comparison

Before After
File sbomify-minio-init.enriched.cdx.json sbomify-minio-init.enriched.cdx.json
File Size 274 KB 274 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 16 16
PURL Coverage 100.0% 100.0%
License Coverage 56.2% 56.2%
Hash Coverage 0.0% 0.0%
CPE Coverage 43.8% 43.8%

Key Findings

  • 🔄 0 version changes among 16 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (16) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T11:26:59Z

@claude
🔧 update (sbom): fix sbom-score jq fields for sbomqs v2.0.4
0d32516 
sbomqs v2.0.4 changed its JSON schema:
- .files[0].avg_score → .sbom_quality_score
- .files[0].scores[] → .comprehenssive[] (per-feature, not per-category)

Updated bin/sbom-score to use the new field names and aggregate
per-feature scores into per-category averages.  Removed max_score
from output since the new schema doesn't provide it.

Updated test mocks and fixtures to match.

Co-Authored-By: Yakriel (Claude) <noreply@anthropic.com>
@mrdavidlaing mrdavidlaing merged commit 0d32516 into main Mar 17, 2026
8 checks passed
@mrdavidlaing mrdavidlaing deleted the test/sbom-quality-gate branch March 17, 2026 11:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mrdavidlaing