Skip to content

test: trigger SBOM quality gate with fixed scoring#7

Closed
mrdavidlaing wants to merge 2 commits intomainfrom
test/sbom-quality-gate-v2
Closed

test: trigger SBOM quality gate with fixed scoring#7
mrdavidlaing wants to merge 2 commits intomainfrom
test/sbom-quality-gate-v2

Conversation

@mrdavidlaing
Copy link
Contributor

@mrdavidlaing mrdavidlaing commented Mar 17, 2026

Summary

  • Empty commit to trigger the Generate SBOMs → SBOM quality gate pipeline
  • Now that the sbomqs v2.0.4 field name fix is on main, the quality gate should produce real scores instead of null

What to verify

  • Score column shows actual numbers (not null)
  • Categories are populated
  • Delta calculation works against baseline

🤖 Generated with Claude Code

Yakira and others added 2 commits March 17, 2026 11:29
@claude
🧪 test: trigger SBOM quality gate with fixed scoring
5eb8682 
Empty commit to trigger the Generate SBOMs → quality gate pipeline
now that the sbomqs v2.0.4 field name fix is on main.

Co-Authored-By: Yakriel (Claude) <noreply@anthropic.com>
@claude
🧪 test: touch watched path to trigger SBOM quality gate pipeline
7fcc19e 
Add output documentation comment to patch-sbom-root.
This commit touches bin/patch-sbom-root — a path watched by sbom-generate.yml —
so the Generate SBOMs workflow triggers on PR #7 and we can verify
the full quality gate pipeline end-to-end with real numeric scores.

Co-Authored-By: Yakira (Claude) <noreply@anthropic.com>
@github-actions
Copy link

github-actions bot commented Mar 17, 2026

SBOM Quality Gate

Image Score Baseline Delta Status
minio-client 5.0003586800573885 5.0003586800573885 0 pass
minio 4.946476964769648 4.946476964769648 0 pass
postgres 6.120544090056285 6.120544090056285 0 pass
redis 5.8565522943365025 5.8565522943365025 0 pass
sbomify-app 5.389046271443576 5.389046271443576 0 pass
sbomify-caddy-dev 6.058630393996247 6.058630393996247 0 pass
sbomify-keycloak 6.034922394678492 6.034922394678492 0 pass
sbomify-minio-init 5.0003586800573885 5.0003586800573885 0 pass
Diff: minio-client

📦 SBOM Diff Report

SBOM Comparison

Before After
File minio-client.enriched.cdx.json minio-client.enriched.cdx.json
File Size 274 KB 274 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 16 16
PURL Coverage 100.0% 100.0%
License Coverage 56.2% 56.2%
Hash Coverage 0.0% 0.0%
CPE Coverage 43.8% 43.8%

Key Findings

  • 🔄 0 version changes among 16 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (16) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T20:14:57Z

Diff: minio

📦 SBOM Diff Report

SBOM Comparison

Before After
File minio.enriched.cdx.json minio.enriched.cdx.json
File Size 275 KB 275 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 17 17
PURL Coverage 100.0% 100.0%
License Coverage 52.9% 52.9%
Hash Coverage 0.0% 0.0%
CPE Coverage 41.2% 41.2%

Key Findings

  • 🔄 0 version changes among 17 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (17) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T20:14:48Z

Diff: postgres

📦 SBOM Diff Report

SBOM Comparison

Before After
File postgres.enriched.cdx.json postgres.enriched.cdx.json
File Size 278 KB 278 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 25 25
PURL Coverage 100.0% 100.0%
License Coverage 40.0% 40.0%
Hash Coverage 0.0% 0.0%
CPE Coverage 32.0% 32.0%

Key Findings

  • 🔄 0 version changes among 25 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (25) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T20:14:50Z

Diff: redis

📦 SBOM Diff Report

SBOM Comparison

Before After
File redis.enriched.cdx.json redis.enriched.cdx.json
File Size 338 KB 338 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 58 58
PURL Coverage 100.0% 100.0%
License Coverage 25.9% 25.9%
Hash Coverage 0.0% 0.0%
CPE Coverage 19.0% 19.0%

Key Findings

  • 🔄 0 version changes among 58 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (58) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T20:14:57Z

Diff: sbomify-app

📦 SBOM Diff Report

SBOM Comparison

Before After
File sbomify-app.enriched.cdx.json sbomify-app.enriched.cdx.json
File Size 380 KB 380 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 208 208
PURL Coverage 100.0% 100.0%
License Coverage 6.2% 6.2%
Hash Coverage 0.0% 0.0%
CPE Coverage 4.8% 4.8%

Key Findings

  • 🔄 0 version changes among 208 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (208) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T20:15:01Z

Diff: sbomify-caddy-dev

📦 SBOM Diff Report

SBOM Comparison

Before After
File sbomify-caddy-dev.enriched.cdx.json sbomify-caddy-dev.enriched.cdx.json
File Size 253 KB 253 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 12 12
PURL Coverage 100.0% 100.0%
License Coverage 41.7% 41.7%
Hash Coverage 0.0% 0.0%
CPE Coverage 33.3% 33.3%

Key Findings

  • 🔄 0 version changes among 12 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (12) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T20:14:59Z

Diff: sbomify-keycloak

📦 SBOM Diff Report

SBOM Comparison

Before After
File sbomify-keycloak.enriched.cdx.json sbomify-keycloak.enriched.cdx.json
File Size 326 KB 326 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 32 32
PURL Coverage 100.0% 100.0%
License Coverage 46.9% 46.9%
Hash Coverage 0.0% 0.0%
CPE Coverage 37.5% 37.5%

Key Findings

  • 🔄 0 version changes among 32 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (32) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T20:14:57Z

Diff: sbomify-minio-init

📦 SBOM Diff Report

SBOM Comparison

Before After
File sbomify-minio-init.enriched.cdx.json sbomify-minio-init.enriched.cdx.json
File Size 274 KB 274 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 16 16
PURL Coverage 100.0% 100.0%
License Coverage 56.2% 56.2%
Hash Coverage 0.0% 0.0%
CPE Coverage 43.8% 43.8%

Key Findings

  • 🔄 0 version changes among 16 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (16) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T20:14:49Z

@mrdavidlaing
Copy link
Contributor Author

mrdavidlaing commented Mar 17, 2026

End-to-end verification complete. Quality gate pipeline is working correctly — real numeric scores appear in the PR comment for all 8 images. Closing test PR.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mrdavidlaing