diff --git a/templates/gitlab-ci-maven-jib.yml b/templates/gitlab-ci-maven-jib.yml index a6ca86cfe30620adc47f75085e72e82a98411a12..93fbbe4630fb69785b0e9d9ce0ecb2edcd7e6b33 100644 --- a/templates/gitlab-ci-maven-jib.yml +++ b/templates/gitlab-ci-maven-jib.yml @@ -136,7 +136,7 @@ mvn-sbom: # initialize Docker auth config - !reference [.mvn-jib-scripts] - mkdir -p -m 777 reports - - /syft packages $MAVEN_JIB_SNAPSHOT_IMAGE $MAVEN_SBOM_OPTS -o cyclonedx-json=reports/mvn-sbom-${jib_digest}.cyclonedx.json + - /syft scan $MAVEN_JIB_SNAPSHOT_IMAGE $MAVEN_SBOM_OPTS -o cyclonedx-json=reports/mvn-sbom-${jib_digest}.cyclonedx.json - chmod a+r reports/mvn-sbom-${jib_digest}.cyclonedx.json artifacts: name: "SBOM for container from $CI_PROJECT_NAME on $CI_COMMIT_REF_SLUG"