Merge pull request #1231 from AttilaMihaly/sca-scan-fix

AttilaMihaly · web-flow · commit 0f7f8622edb8 · 2025-04-23T22:21:06.000+02:00
Temporarily turn-off SCA scanning until issues are resolved
diff --git a/.github/workflows/nodejs.yml b/.github/workflows/nodejs.yml
@@ -60,31 +60,31 @@ jobs:
       ###########################
       ## Sonatype SCA Scanning ##
       ###########################
-      - name: Sonatype Lifecycle SCA Scan
-        if: github.repository_owner == 'finos'
-        id: evaluate
-        uses: sonatype/actions/evaluate@v1
-        with:
-          iq-server-url: ${{ env.SonatypeUrl }}
-          username: ${{ secrets.SONATYPE_SCANNER_USERNAME }}
-          password: ${{ secrets.SONATYPE_SCANNER_PASSWORD }}
-          application-id: ${{ env.SonatypeAppId }}
-          stage: "build"
-          scan-targets: ${{ env.SonatypeScanTarget }}
-          module-exclude: ${{ env.ExcludeDirectory }}
+      # - name: Sonatype Lifecycle SCA Scan
+      #   if: github.repository_owner == 'finos'
+      #   id: evaluate
+      #   uses: sonatype/actions/evaluate@v1
+      #   with:
+      #     iq-server-url: ${{ env.SonatypeUrl }}
+      #     username: ${{ secrets.SONATYPE_SCANNER_USERNAME }}
+      #     password: ${{ secrets.SONATYPE_SCANNER_PASSWORD }}
+      #     application-id: ${{ env.SonatypeAppId }}
+      #     stage: "build"
+      #     scan-targets: ${{ env.SonatypeScanTarget }}
+      #     module-exclude: ${{ env.ExcludeDirectory }}
 
-      - name: Save Sonatype SBOM
-        uses: sonatype/actions/fetch-sbom@v1
-        if: always() && steps.evaluate.outputs.scan-id
-        with:
-          iq-server-url: ${{ env.SonatypeUrl }}
-          username: ${{ secrets.SONATYPE_SCANNER_USERNAME }}
-          password: ${{ secrets.SONATYPE_SCANNER_PASSWORD }}
-          application-id: ${{ env.SonatypeAppId }}
-          scan-id: ${{ steps.evaluate.outputs.scan-id }}
-          sbom-standard: spdx
-          sbom-version: 2.3
-          artifact-name: ${{ env.SonatypeAppId }}-bom
+      # - name: Save Sonatype SBOM
+      #   uses: sonatype/actions/fetch-sbom@v1
+      #   if: always() && steps.evaluate.outputs.scan-id
+      #   with:
+      #     iq-server-url: ${{ env.SonatypeUrl }}
+      #     username: ${{ secrets.SONATYPE_SCANNER_USERNAME }}
+      #     password: ${{ secrets.SONATYPE_SCANNER_PASSWORD }}
+      #     application-id: ${{ env.SonatypeAppId }}
+      #     scan-id: ${{ steps.evaluate.outputs.scan-id }}
+      #     sbom-standard: spdx
+      #     sbom-version: 2.3
+      #     artifact-name: ${{ env.SonatypeAppId }}-bom
 
   # CVE scanning
   # cvescan:
