sbom-enforcer:check
Full name:
io.github.sbom-enforcer:sbom-enforcer-maven-plugin:0.2.0:check
Description:
Performs a configurable set of checks on the SBOMs attached to the build.
See Rules for a list of available rules.
Attributes:
- Requires a Maven project to be executed.
- The goal is not marked as thread-safe and thus does not support parallel builds.
- Binds by default to the lifecycle phase:
verify.
Optional Parameters
| Name | Type | Since | Description |
|---|---|---|---|
<privateLocalRepoPath> |
Path |
- |
Path to a local Maven repository to use if `usePrivateLocalRepo` is true. Default: ${project.build.directory}/sbom-enforcer/repository |
<rules> |
PlexusConfiguration |
- |
Configuration of the rules to execute. |
<usePrivateLocalRepo> |
boolean |
- |
If set to true, the contents of the per-user local Maven repository are ignored and a per-Maven module local Maven repository is used instead.Default: false |
Parameter Details
<privateLocalRepoPath>
Path to a local Maven repository to use if `usePrivateLocalRepo` is true.
- Type:
java.nio.file.Path - Required:
No - Default:
${project.build.directory}/sbom-enforcer/repository
<rules>
Configuration of the rules to execute.
- Type:
org.codehaus.plexus.configuration.PlexusConfiguration - Required:
No
<usePrivateLocalRepo>
If set to
true, the contents of the per-user local Maven repository are ignored and a per-Maven module local Maven repository is used instead.- Type:
boolean - Required:
No - Default:
false