From d7f65a84cae76f875341e06c4337f047e10f2345 Mon Sep 17 00:00:00 2001
From: shirou <shirou.faw@gmail.com>
Date: Thu, 6 Apr 2023 12:31:41 +0000
Subject: [PATCH] Add github SBOM Generator

See this GitHub blog post
https://github.blog/2023-03-28-introducing-self-service-sboms/
---
 .github/workflows/sbom_generator.yml | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)
 create mode 100644 .github/workflows/sbom_generator.yml

diff --git a/.github/workflows/sbom_generator.yml b/.github/workflows/sbom_generator.yml
new file mode 100644
index 00000000..856f31e3
--- /dev/null
+++ b/.github/workflows/sbom_generator.yml
@@ -0,0 +1,25 @@
+name: SBOM Generator
+
+on:
+  push:
+    branches: [ "main" ]
+
+  workflow_dispatch:
+
+permissions: read-all
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+
+    steps:
+      - uses: actions/checkout@v3
+
+      - uses: advanced-security/sbom-generator-action@v0.0.1
+        id: sbom
+        env: 
+          GITHUB_TOKEN: ${{ github.token }}
+      - uses: actions/upload-artifact@v3.1.0
+        with: 
+          path: ${{steps.sbom.outputs.fileName }}
+          name: "SBOM"