Skip to content

test: verify pending comment and score formatting#8

Open
mrdavidlaing wants to merge 1 commit intomainfrom
test/verify-pending-comment-and-formatting
Open

test: verify pending comment and score formatting#8
mrdavidlaing wants to merge 1 commit intomainfrom
test/verify-pending-comment-and-formatting

Conversation

@mrdavidlaing
Copy link
Contributor

@mrdavidlaing mrdavidlaing commented Mar 17, 2026

Test PR to verify:

  1. Pending comment appears immediately on PR open
  2. Scores are formatted to 2dp with signed delta and emoji status indicators

Do NOT merge or close — leave open for the operator to observe the pipeline.

@claude
🧪 test: touch watched path to trigger SBOM quality gate pipeline
ed38d82 
Verify pending comment appears on PR open and scores are formatted
to 2dp with signed delta and emoji status indicators.

Co-Authored-By: Yaklyn (Claude) <noreply@anthropic.com>
@github-actions
Copy link

github-actions bot commented Mar 17, 2026
edited
Loading

SBOM Quality Gate

Image Score Baseline Delta Status
minio-client 5.00 5.00 +0.00 ✅ pass
minio 4.95 4.95 +0.00 ✅ pass
postgres 6.12 6.12 +0.00 ✅ pass
redis 5.86 5.86 +0.00 ✅ pass
sbomify-app 5.39 5.39 +0.00 ✅ pass
sbomify-caddy-dev 6.06 6.06 +0.00 ✅ pass
sbomify-keycloak 6.03 6.03 +0.00 ✅ pass
sbomify-minio-init 5.00 5.00 +0.00 ✅ pass
Diff: minio-client

📦 SBOM Diff Report

SBOM Comparison

Before After
File minio-client.enriched.cdx.json minio-client.enriched.cdx.json
File Size 274 KB 274 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 16 16
PURL Coverage 100.0% 100.0%
License Coverage 56.2% 56.2%
Hash Coverage 0.0% 0.0%
CPE Coverage 43.8% 43.8%

Key Findings

  • 🔄 0 version changes among 16 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (16) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T20:57:21Z

Diff: minio

📦 SBOM Diff Report

SBOM Comparison

Before After
File minio.enriched.cdx.json minio.enriched.cdx.json
File Size 275 KB 275 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 17 17
PURL Coverage 100.0% 100.0%
License Coverage 52.9% 52.9%
Hash Coverage 0.0% 0.0%
CPE Coverage 41.2% 41.2%

Key Findings

  • 🔄 0 version changes among 17 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (17) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T20:57:23Z

Diff: postgres

📦 SBOM Diff Report

SBOM Comparison

Before After
File postgres.enriched.cdx.json postgres.enriched.cdx.json
File Size 278 KB 278 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 25 25
PURL Coverage 100.0% 100.0%
License Coverage 40.0% 40.0%
Hash Coverage 0.0% 0.0%
CPE Coverage 32.0% 32.0%

Key Findings

  • 🔄 0 version changes among 25 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (25) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T20:57:36Z

Diff: redis

📦 SBOM Diff Report

SBOM Comparison

Before After
File redis.enriched.cdx.json redis.enriched.cdx.json
File Size 338 KB 338 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 58 58
PURL Coverage 100.0% 100.0%
License Coverage 25.9% 25.9%
Hash Coverage 0.0% 0.0%
CPE Coverage 19.0% 19.0%

Key Findings

  • 🔄 0 version changes among 58 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (58) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T20:57:42Z

Diff: sbomify-app

📦 SBOM Diff Report

SBOM Comparison

Before After
File sbomify-app.enriched.cdx.json sbomify-app.enriched.cdx.json
File Size 380 KB 380 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 208 208
PURL Coverage 100.0% 100.0%
License Coverage 6.2% 6.2%
Hash Coverage 0.0% 0.0%
CPE Coverage 4.8% 4.8%

Key Findings

  • 🔄 0 version changes among 208 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (208) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T20:57:27Z

Diff: sbomify-caddy-dev

📦 SBOM Diff Report

SBOM Comparison

Before After
File sbomify-caddy-dev.enriched.cdx.json sbomify-caddy-dev.enriched.cdx.json
File Size 253 KB 253 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 12 12
PURL Coverage 100.0% 100.0%
License Coverage 41.7% 41.7%
Hash Coverage 0.0% 0.0%
CPE Coverage 33.3% 33.3%

Key Findings

  • 🔄 0 version changes among 12 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (12) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T20:57:29Z

Diff: sbomify-keycloak

📦 SBOM Diff Report

SBOM Comparison

Before After
File sbomify-keycloak.enriched.cdx.json sbomify-keycloak.enriched.cdx.json
File Size 326 KB 326 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 32 32
PURL Coverage 100.0% 100.0%
License Coverage 46.9% 46.9%
Hash Coverage 0.0% 0.0%
CPE Coverage 37.5% 37.5%

Key Findings

  • 🔄 0 version changes among 32 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (32) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T20:57:26Z

Diff: sbomify-minio-init

📦 SBOM Diff Report

SBOM Comparison

Before After
File sbomify-minio-init.enriched.cdx.json sbomify-minio-init.enriched.cdx.json
File Size 274 KB 274 KB
Format (none) (none)
OS (none) (none)
Source (none) (none)
Total Components 16 16
PURL Coverage 100.0% 100.0%
License Coverage 56.2% 56.2%
Hash Coverage 0.0% 0.0%
CPE Coverage 43.8% 43.8%

Key Findings

  • 🔄 0 version changes among 16 shared packages — no actual upgrades
  • ✅ Core system packages stable: nix (16) unchanged

Summary

Metric Count
Added 0
Removed 0
Changed 0

Generated by sbomlyze at 2026-03-17T20:57:57Z

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mrdavidlaing