@@ -111,6 +111,17 @@ jobs:
111111 -e "postgres_major_version=${{ matrix.postgres_version }}" \
112112 manifest-playbook.yml
113113
114+ name : Upload SBOM to s3 staging
115+ run : |
116+ PG_VERSION=${{ steps.process_release_version.outputs.version }}
117+ if [ -f "ubuntu-sbom-${PG_VERSION}.spdx.json" ]; then
118+ aws s3 cp "ubuntu-sbom-${PG_VERSION}.spdx.json" \
119+ "s3://${{ secrets.ARTIFACTS_BUCKET }}/manifests/postgres-${PG_VERSION}/sbom.spdx.json"
120+ echo "SBOM uploaded to staging"
121+ else
122+ echo "Warning: SBOM file not found, skipping upload"
123+ fi
124+
114125name : Upload nix flake revision to s3 staging
115126 run : |
116127 aws s3 cp /tmp/pg_binaries.tar.gz s3://${{ secrets.ARTIFACTS_BUCKET }}/upgrades/postgres/supabase-postgres-${{ steps.process_release_version.outputs.version }}/20.04.tar.gz
@@ -132,6 +143,17 @@ jobs:
132143 -e "postgres_major_version=${{ matrix.postgres_version }}" \
133144 manifest-playbook.yml
134145
146+ name : Upload SBOM to s3 prod
147+ run : |
148+ PG_VERSION=${{ steps.process_release_version.outputs.version }}
149+ if [ -f "ubuntu-sbom-${PG_VERSION}.spdx.json" ]; then
150+ aws s3 cp "ubuntu-sbom-${PG_VERSION}.spdx.json" \
151+ "s3://${{ secrets.PROD_ARTIFACTS_BUCKET }}/manifests/postgres-${PG_VERSION}/sbom.spdx.json"
152+ echo "SBOM uploaded to prod"
153+ else
154+ echo "Warning: SBOM file not found, skipping upload"
155+ fi
156+
135157name : Upload nix flake revision to s3 prod
136158 run : |
137159 aws s3 cp /tmp/pg_binaries.tar.gz s3://${{ secrets.PROD_ARTIFACTS_BUCKET }}/upgrades/postgres/supabase-postgres-${{ steps.process_release_version.outputs.version }}/20.04.tar.gz
0 commit comments