From 96fed6c5364af7248ded4fdb62b26d9febd8a1ec Mon Sep 17 00:00:00 2001
From: ejahnGithub <ejahngithub@github.com>
Date: Thu, 2 May 2024 06:21:06 -0400
Subject: [PATCH] added sbom generate

---
 .github/workflows/build-docker.yml | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/.github/workflows/build-docker.yml b/.github/workflows/build-docker.yml
index 6900471..29f3c5e 100644
--- a/.github/workflows/build-docker.yml
+++ b/.github/workflows/build-docker.yml
@@ -51,6 +51,13 @@ jobs:
           subject-name: ${{ inputs.registry }}/ejahngithub/${{ inputs.image_name }}
           subject-digest: ${{ steps.docker_build.outputs.digest }}
           push-to-registry: true
+
+      - name: Generate SBOM for
+        uses: anchore/sbom-action@v0.15.11
+        with:
+          format: "spdx-json"
+          output-file: "sbom.json"
+
       - name: Generate SBOM attestation
         uses: actions/attest-sbom@v1
         with: