Skip to content

Commit c7f5471

Browse files
andrpacandrpac
authored
fix: missing version from release SSDLC report (#107)
1 parent 2d3629e commit c7f5471

File tree

3 files changed

+6
-1
lines changed

3 files changed

+6
-1
lines changed

build/ci/release.yml

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -149,6 +149,8 @@ functions:
149149
params:
150150
working_dir: src/github.com/mongodb/atlas-cli-plugin-kubernetes
151151
binary: build/package/generate-ssdlc-report.sh
152+
include_expansions_in_env:
153+
- version
152154
"package":
153155
- command: github.generate_token
154156
params:

build/package/generate-ssdlc-report.sh

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -17,7 +17,7 @@
1717
set -Eeou pipefail
1818

1919
: "${AUTHOR:=$(git config user.name)}"
20-
: "${VERSION:=$(git tag --list 'atlas-cli-plugin-kubernetes/v*' --sort=-taggerdate | head -1 | cut -d 'v' -f 2)}"
20+
: "${VERSION:=$(git tag --list 'v*' --sort=-taggerdate | head -1 | cut -d 'v' -f 2)}"
2121
: "${DATE:=$(date -u '+%Y-%m-%d')}"
2222

2323
export AUTHOR VERSION DATE

docs/releases/ssdlc-compliance.template.md

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -12,6 +12,9 @@ SSDLC Compliance Report: Atlas CLI Plugin Kubernetes v${VERSION}
1212
- **Process Documentation**
1313
- [How MongoDB Protects Against Supply Chain Vulnerabilities](https://www.mongodb.com/blog/post/how-mongodb-protects-against-supply-chain-vulnerabilities)
1414

15+
- **Tool used to track third party vulnerabilities**
16+
- [Kondukto](https://arcticglow.kondukto.io/)
17+
1518
- **Dependency Information**
1619
- The Software Bill of Materials (SBOM) is:
1720
- a) part of this release as `sbom.json` and `augmented-sbom.json` with vulnerabilities found from Kondukto

0 commit comments

Comments
 (0)