mirror of
git://code.qt.io/qt/qt5.git
synced 2026-07-05 14:27:10 +08:00
Syft is a tool that scans package manager manifest or lock files and
generates an SBOM (Software Bill of Materials) file based on the
found packages. It can generated both CycloneDX and SPDX SBOM formats.
The tool will be used by the Qt for Python project to generate SBOMs
based on the python packages used during the build.
The tool is provisioned on all the platforms that have the
GenerateSBOM feature.
Pick-to: 6.11 6.8
Task-number: PYSIDE-3366
Change-Id: I1369f7b1b041b1fc0d8a56a20446df322d26d33a
Reviewed-by: Joerg Bornemann <joerg.bornemann@qt.io>
(cherry picked from commit 341fe4e602)
Reviewed-by: Qt Cherry-pick Bot <cherrypick_bot@qt-project.org>
40 lines
1.2 KiB
Bash
Executable File
40 lines
1.2 KiB
Bash
Executable File
#!/usr/bin/env bash
|
|
# Copyright (C) 2026 The Qt Company Ltd.
|
|
# SPDX-License-Identifier: LicenseRef-Qt-Commercial OR LGPL-3.0-only OR GPL-2.0-only OR GPL-3.0-only
|
|
|
|
# This script installs Syft
|
|
|
|
# Syft is used for generating SBOM (Software Bill of Materials) files.
|
|
|
|
# shellcheck source=../unix/InstallFromCompressedFileFromURL.sh
|
|
source "${BASH_SOURCE%/*}/../unix/InstallFromCompressedFileFromURL.sh"
|
|
# shellcheck source=../unix/SetEnvVar.sh
|
|
source "${BASH_SOURCE%/*}/../unix/SetEnvVar.sh"
|
|
|
|
|
|
version="1.45.1"
|
|
|
|
uname_m="$(uname -m)"
|
|
case "$uname_m" in
|
|
x86_64|amd64)
|
|
SHA1="06e1d56173209977df8b11ad955843cb62f874fd"
|
|
arch="amd64"
|
|
;;
|
|
arm64|aarch64)
|
|
SHA1="c48638b3998066dbd139e94e116a81a6cc6299be"
|
|
arch="arm64"
|
|
;;
|
|
*) fatal "Unknown architecture in uname: $uname_m" 43 ;;
|
|
esac
|
|
|
|
PrimaryUrl="http://ci-files01-hki.ci.qt.io/input/syft/syft_${version}_linux_${arch}.tar.gz"
|
|
AltUrl="https://github.com/anchore/syft/releases/download/v${version}/syft_${version}_linux_${arch}.tar.gz"
|
|
targetFolder="/opt/syft-$version"
|
|
appPrefix=""
|
|
|
|
InstallFromCompressedFileFromURL "$PrimaryUrl" "$AltUrl" "$SHA1" "$targetFolder" "$appPrefix"
|
|
|
|
SetEnvVar "PATH" "$targetFolder:\$PATH"
|
|
|
|
echo "Syft = $version" >> ~/versions.txt
|