@datadog/datadog-ci 2.18.0 → 2.19.0

package/dist/commands/sbom/protobuf/sbom_intake.js

@@ -0,0 +1,383 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || function (mod) {
+    if (mod && mod.__esModule) return mod;
+    var result = {};
+    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
+    __setModuleDefault(result, mod);
+    return result;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SBOMEntity = exports.SBOMPayload = exports.sBOMSourceTypeToJSON = exports.sBOMSourceTypeFromJSON = exports.SBOMSourceType = exports.protobufPackage = void 0;
+/* eslint-disable */
+const _m0 = __importStar(require("protobufjs/minimal"));
+const bom_1_4_1 = require("./bom-1.4");
+const duration_1 = require("./google/protobuf/duration");
+const timestamp_1 = require("./google/protobuf/timestamp");
+exports.protobufPackage = 'appsecpb';
+var SBOMSourceType;
+(function (SBOMSourceType) {
+    SBOMSourceType[SBOMSourceType["UNSPECIFIED"] = 0] = "UNSPECIFIED";
+    SBOMSourceType[SBOMSourceType["CONTAINER_IMAGE_LAYERS"] = 1] = "CONTAINER_IMAGE_LAYERS";
+    SBOMSourceType[SBOMSourceType["CONTAINER_FILE_SYSTEM"] = 2] = "CONTAINER_FILE_SYSTEM";
+    SBOMSourceType[SBOMSourceType["HOST_FILE_SYSTEM"] = 3] = "HOST_FILE_SYSTEM";
+    SBOMSourceType[SBOMSourceType["CI_PIPELINE"] = 4] = "CI_PIPELINE";
+    SBOMSourceType[SBOMSourceType["UNRECOGNIZED"] = -1] = "UNRECOGNIZED";
+})(SBOMSourceType || (exports.SBOMSourceType = SBOMSourceType = {}));
+function sBOMSourceTypeFromJSON(object) {
+    switch (object) {
+        case 0:
+        case 'UNSPECIFIED':
+            return SBOMSourceType.UNSPECIFIED;
+        case 1:
+        case 'CONTAINER_IMAGE_LAYERS':
+            return SBOMSourceType.CONTAINER_IMAGE_LAYERS;
+        case 2:
+        case 'CONTAINER_FILE_SYSTEM':
+            return SBOMSourceType.CONTAINER_FILE_SYSTEM;
+        case 3:
+        case 'HOST_FILE_SYSTEM':
+            return SBOMSourceType.HOST_FILE_SYSTEM;
+        case 4:
+        case 'CI_PIPELINE':
+            return SBOMSourceType.CI_PIPELINE;
+        case -1:
+        case 'UNRECOGNIZED':
+        default:
+            return SBOMSourceType.UNRECOGNIZED;
+    }
+}
+exports.sBOMSourceTypeFromJSON = sBOMSourceTypeFromJSON;
+function sBOMSourceTypeToJSON(object) {
+    switch (object) {
+        case SBOMSourceType.UNSPECIFIED:
+            return 'UNSPECIFIED';
+        case SBOMSourceType.CONTAINER_IMAGE_LAYERS:
+            return 'CONTAINER_IMAGE_LAYERS';
+        case SBOMSourceType.CONTAINER_FILE_SYSTEM:
+            return 'CONTAINER_FILE_SYSTEM';
+        case SBOMSourceType.HOST_FILE_SYSTEM:
+            return 'HOST_FILE_SYSTEM';
+        case SBOMSourceType.CI_PIPELINE:
+            return 'CI_PIPELINE';
+        case SBOMSourceType.UNRECOGNIZED:
+        default:
+            return 'UNRECOGNIZED';
+    }
+}
+exports.sBOMSourceTypeToJSON = sBOMSourceTypeToJSON;
+function createBaseSBOMPayload() {
+    return { version: 0, host: '', source: undefined, entities: [], ddEnv: undefined };
+}
+exports.SBOMPayload = {
+    encode(message, writer = _m0.Writer.create()) {
+        if (message.version !== 0) {
+            writer.uint32(8).int32(message.version);
+        }
+        if (message.host !== '') {
+            writer.uint32(18).string(message.host);
+        }
+        if (message.source !== undefined) {
+            writer.uint32(26).string(message.source);
+        }
+        for (const v of message.entities) {
+            exports.SBOMEntity.encode(v, writer.uint32(34).fork()).ldelim();
+        }
+        if (message.ddEnv !== undefined) {
+            writer.uint32(42).string(message.ddEnv);
+        }
+        return writer;
+    },
+    decode(input, length) {
+        const reader = input instanceof _m0.Reader ? input : _m0.Reader.create(input);
+        let end = length === undefined ? reader.len : reader.pos + length;
+        const message = createBaseSBOMPayload();
+        while (reader.pos < end) {
+            const tag = reader.uint32();
+            switch (tag >>> 3) {
+                case 1:
+                    if (tag !== 8) {
+                        break;
+                    }
+                    message.version = reader.int32();
+                    continue;
+                case 2:
+                    if (tag !== 18) {
+                        break;
+                    }
+                    message.host = reader.string();
+                    continue;
+                case 3:
+                    if (tag !== 26) {
+                        break;
+                    }
+                    message.source = reader.string();
+                    continue;
+                case 4:
+                    if (tag !== 34) {
+                        break;
+                    }
+                    message.entities.push(exports.SBOMEntity.decode(reader, reader.uint32()));
+                    continue;
+                case 5:
+                    if (tag !== 42) {
+                        break;
+                    }
+                    message.ddEnv = reader.string();
+                    continue;
+            }
+            if ((tag & 7) === 4 || tag === 0) {
+                break;
+            }
+            reader.skipType(tag & 7);
+        }
+        return message;
+    },
+    fromJSON(object) {
+        return {
+            version: isSet(object.version) ? Number(object.version) : 0,
+            host: isSet(object.host) ? String(object.host) : '',
+            source: isSet(object.source) ? String(object.source) : undefined,
+            entities: Array.isArray(object === null || object === void 0 ? void 0 : object.entities) ? object.entities.map((e) => exports.SBOMEntity.fromJSON(e)) : [],
+            ddEnv: isSet(object.ddEnv) ? String(object.ddEnv) : undefined,
+        };
+    },
+    toJSON(message) {
+        var _a;
+        const obj = {};
+        if (message.version !== 0) {
+            obj.version = Math.round(message.version);
+        }
+        if (message.host !== '') {
+            obj.host = message.host;
+        }
+        if (message.source !== undefined) {
+            obj.source = message.source;
+        }
+        if ((_a = message.entities) === null || _a === void 0 ? void 0 : _a.length) {
+            obj.entities = message.entities.map((e) => exports.SBOMEntity.toJSON(e));
+        }
+        if (message.ddEnv !== undefined) {
+            obj.ddEnv = message.ddEnv;
+        }
+        return obj;
+    },
+    create(base) {
+        return exports.SBOMPayload.fromPartial(base !== null && base !== void 0 ? base : {});
+    },
+    fromPartial(object) {
+        var _a, _b, _c, _d, _e;
+        const message = createBaseSBOMPayload();
+        message.version = (_a = object.version) !== null && _a !== void 0 ? _a : 0;
+        message.host = (_b = object.host) !== null && _b !== void 0 ? _b : '';
+        message.source = (_c = object.source) !== null && _c !== void 0 ? _c : undefined;
+        message.entities = ((_d = object.entities) === null || _d === void 0 ? void 0 : _d.map((e) => exports.SBOMEntity.fromPartial(e))) || [];
+        message.ddEnv = (_e = object.ddEnv) !== null && _e !== void 0 ? _e : undefined;
+        return message;
+    },
+};
+function createBaseSBOMEntity() {
+    return {
+        type: 0,
+        id: '',
+        ddTags: [],
+        generatedAt: undefined,
+        repoTags: [],
+        inUse: false,
+        generationDuration: undefined,
+        cyclonedx: undefined,
+    };
+}
+exports.SBOMEntity = {
+    encode(message, writer = _m0.Writer.create()) {
+        if (message.type !== 0) {
+            writer.uint32(8).int32(message.type);
+        }
+        if (message.id !== '') {
+            writer.uint32(18).string(message.id);
+        }
+        for (const v of message.ddTags) {
+            writer.uint32(58).string(v);
+        }
+        if (message.generatedAt !== undefined) {
+            timestamp_1.Timestamp.encode(toTimestamp(message.generatedAt), writer.uint32(26).fork()).ldelim();
+        }
+        for (const v of message.repoTags) {
+            writer.uint32(34).string(v);
+        }
+        if (message.inUse === true) {
+            writer.uint32(40).bool(message.inUse);
+        }
+        if (message.generationDuration !== undefined) {
+            duration_1.Duration.encode(message.generationDuration, writer.uint32(50).fork()).ldelim();
+        }
+        if (message.cyclonedx !== undefined) {
+            bom_1_4_1.Bom.encode(message.cyclonedx, writer.uint32(82).fork()).ldelim();
+        }
+        return writer;
+    },
+    decode(input, length) {
+        const reader = input instanceof _m0.Reader ? input : _m0.Reader.create(input);
+        let end = length === undefined ? reader.len : reader.pos + length;
+        const message = createBaseSBOMEntity();
+        while (reader.pos < end) {
+            const tag = reader.uint32();
+            switch (tag >>> 3) {
+                case 1:
+                    if (tag !== 8) {
+                        break;
+                    }
+                    message.type = reader.int32();
+                    continue;
+                case 2:
+                    if (tag !== 18) {
+                        break;
+                    }
+                    message.id = reader.string();
+                    continue;
+                case 7:
+                    if (tag !== 58) {
+                        break;
+                    }
+                    message.ddTags.push(reader.string());
+                    continue;
+                case 3:
+                    if (tag !== 26) {
+                        break;
+                    }
+                    message.generatedAt = fromTimestamp(timestamp_1.Timestamp.decode(reader, reader.uint32()));
+                    continue;
+                case 4:
+                    if (tag !== 34) {
+                        break;
+                    }
+                    message.repoTags.push(reader.string());
+                    continue;
+                case 5:
+                    if (tag !== 40) {
+                        break;
+                    }
+                    message.inUse = reader.bool();
+                    continue;
+                case 6:
+                    if (tag !== 50) {
+                        break;
+                    }
+                    message.generationDuration = duration_1.Duration.decode(reader, reader.uint32());
+                    continue;
+                case 10:
+                    if (tag !== 82) {
+                        break;
+                    }
+                    message.cyclonedx = bom_1_4_1.Bom.decode(reader, reader.uint32());
+                    continue;
+            }
+            if ((tag & 7) === 4 || tag === 0) {
+                break;
+            }
+            reader.skipType(tag & 7);
+        }
+        return message;
+    },
+    fromJSON(object) {
+        return {
+            type: isSet(object.type) ? sBOMSourceTypeFromJSON(object.type) : 0,
+            id: isSet(object.id) ? String(object.id) : '',
+            ddTags: Array.isArray(object === null || object === void 0 ? void 0 : object.ddTags) ? object.ddTags.map((e) => String(e)) : [],
+            generatedAt: isSet(object.generatedAt) ? fromJsonTimestamp(object.generatedAt) : undefined,
+            repoTags: Array.isArray(object === null || object === void 0 ? void 0 : object.repoTags) ? object.repoTags.map((e) => String(e)) : [],
+            inUse: isSet(object.inUse) ? Boolean(object.inUse) : false,
+            generationDuration: isSet(object.generationDuration) ? duration_1.Duration.fromJSON(object.generationDuration) : undefined,
+            cyclonedx: isSet(object.cyclonedx) ? bom_1_4_1.Bom.fromJSON(object.cyclonedx) : undefined,
+        };
+    },
+    toJSON(message) {
+        var _a, _b;
+        const obj = {};
+        if (message.type !== 0) {
+            obj.type = sBOMSourceTypeToJSON(message.type);
+        }
+        if (message.id !== '') {
+            obj.id = message.id;
+        }
+        if ((_a = message.ddTags) === null || _a === void 0 ? void 0 : _a.length) {
+            obj.ddTags = message.ddTags;
+        }
+        if (message.generatedAt !== undefined) {
+            obj.generatedAt = message.generatedAt.toISOString();
+        }
+        if ((_b = message.repoTags) === null || _b === void 0 ? void 0 : _b.length) {
+            obj.repoTags = message.repoTags;
+        }
+        if (message.inUse === true) {
+            obj.inUse = message.inUse;
+        }
+        if (message.generationDuration !== undefined) {
+            obj.generationDuration = duration_1.Duration.toJSON(message.generationDuration);
+        }
+        if (message.cyclonedx !== undefined) {
+            obj.cyclonedx = bom_1_4_1.Bom.toJSON(message.cyclonedx);
+        }
+        return obj;
+    },
+    create(base) {
+        return exports.SBOMEntity.fromPartial(base !== null && base !== void 0 ? base : {});
+    },
+    fromPartial(object) {
+        var _a, _b, _c, _d, _e, _f;
+        const message = createBaseSBOMEntity();
+        message.type = (_a = object.type) !== null && _a !== void 0 ? _a : 0;
+        message.id = (_b = object.id) !== null && _b !== void 0 ? _b : '';
+        message.ddTags = ((_c = object.ddTags) === null || _c === void 0 ? void 0 : _c.map((e) => e)) || [];
+        message.generatedAt = (_d = object.generatedAt) !== null && _d !== void 0 ? _d : undefined;
+        message.repoTags = ((_e = object.repoTags) === null || _e === void 0 ? void 0 : _e.map((e) => e)) || [];
+        message.inUse = (_f = object.inUse) !== null && _f !== void 0 ? _f : false;
+        message.generationDuration =
+            object.generationDuration !== undefined && object.generationDuration !== null
+                ? duration_1.Duration.fromPartial(object.generationDuration)
+                : undefined;
+        message.cyclonedx =
+            object.cyclonedx !== undefined && object.cyclonedx !== null ? bom_1_4_1.Bom.fromPartial(object.cyclonedx) : undefined;
+        return message;
+    },
+};
+function toTimestamp(date) {
+    const seconds = date.getTime() / 1000;
+    const nanos = (date.getTime() % 1000) * 1000000;
+    return { seconds, nanos };
+}
+function fromTimestamp(t) {
+    let millis = (t.seconds || 0) * 1000;
+    millis += (t.nanos || 0) / 1000000;
+    return new Date(millis);
+}
+function fromJsonTimestamp(o) {
+    if (o instanceof Date) {
+        return o;
+    }
+    else if (typeof o === 'string') {
+        return new Date(o);
+    }
+    else {
+        return fromTimestamp(timestamp_1.Timestamp.fromJSON(o));
+    }
+}
+function isSet(value) {
+    return value !== null && value !== undefined;
+}
+//# sourceMappingURL=sbom_intake.js.map

package/dist/commands/sbom/protobuf/sbom_intake.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sbom_intake.js","sourceRoot":"","sources":["../../../../src/commands/sbom/protobuf/sbom_intake.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,oBAAoB;AACpB,wDAAyC;AACzC,uCAA6B;AAC7B,yDAAmD;AACnD,2DAAqD;AAGxC,QAAA,eAAe,GAAG,UAAU,CAAA;AAEzC,IAAY,cAOX;AAPD,WAAY,cAAc;IACxB,iEAAe,CAAA;IACf,uFAA0B,CAAA;IAC1B,qFAAyB,CAAA;IACzB,2EAAoB,CAAA;IACpB,iEAAe,CAAA;IACf,oEAAiB,CAAA;AACnB,CAAC,EAPW,cAAc,8BAAd,cAAc,QAOzB;AAED,SAAgB,sBAAsB,CAAC,MAAW;IAChD,QAAQ,MAAM,EAAE;QACd,KAAK,CAAC,CAAC;QACP,KAAK,aAAa;YAChB,OAAO,cAAc,CAAC,WAAW,CAAA;QACnC,KAAK,CAAC,CAAC;QACP,KAAK,wBAAwB;YAC3B,OAAO,cAAc,CAAC,sBAAsB,CAAA;QAC9C,KAAK,CAAC,CAAC;QACP,KAAK,uBAAuB;YAC1B,OAAO,cAAc,CAAC,qBAAqB,CAAA;QAC7C,KAAK,CAAC,CAAC;QACP,KAAK,kBAAkB;YACrB,OAAO,cAAc,CAAC,gBAAgB,CAAA;QACxC,KAAK,CAAC,CAAC;QACP,KAAK,aAAa;YAChB,OAAO,cAAc,CAAC,WAAW,CAAA;QACnC,KAAK,CAAC,CAAC,CAAC;QACR,KAAK,cAAc,CAAC;QACpB;YACE,OAAO,cAAc,CAAC,YAAY,CAAA;KACrC;AACH,CAAC;AAtBD,wDAsBC;AAED,SAAgB,oBAAoB,CAAC,MAAsB;IACzD,QAAQ,MAAM,EAAE;QACd,KAAK,cAAc,CAAC,WAAW;YAC7B,OAAO,aAAa,CAAA;QACtB,KAAK,cAAc,CAAC,sBAAsB;YACxC,OAAO,wBAAwB,CAAA;QACjC,KAAK,cAAc,CAAC,qBAAqB;YACvC,OAAO,uBAAuB,CAAA;QAChC,KAAK,cAAc,CAAC,gBAAgB;YAClC,OAAO,kBAAkB,CAAA;QAC3B,KAAK,cAAc,CAAC,WAAW;YAC7B,OAAO,aAAa,CAAA;QACtB,KAAK,cAAc,CAAC,YAAY,CAAC;QACjC;YACE,OAAO,cAAc,CAAA;KACxB;AACH,CAAC;AAhBD,oDAgBC;AA8BD,SAAS,qBAAqB;IAC5B,OAAO,EAAC,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,MAAM,EAAE,SAAS,EAAE,QAAQ,EAAE,EAAE,EAAE,KAAK,EAAE,SAAS,EAAC,CAAA;AAClF,CAAC;AAEY,QAAA,WAAW,GAA+B;IACrD,MAAM,CAAC,OAAoB,EAAE,SAAqB,GAAG,CAAC,MAAM,CAAC,MAAM,EAAE;QACnE,IAAI,OAAO,CAAC,OAAO,KAAK,CAAC,EAAE;YACzB,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,CAAA;SACxC;QACD,IAAI,OAAO,CAAC,IAAI,KAAK,EAAE,EAAE;YACvB,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,CAAA;SACvC;QACD,IAAI,OAAO,CAAC,MAAM,KAAK,SAAS,EAAE;YAChC,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,CAAA;SACzC;QACD,KAAK,MAAM,CAAC,IAAI,OAAO,CAAC,QAAQ,EAAE;YAChC,kBAAU,CAAC,MAAM,CAAC,CAAE,EAAE,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAA;SACzD;QACD,IAAI,OAAO,CAAC,KAAK,KAAK,SAAS,EAAE;YAC/B,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,CAAA;SACxC;QACD,OAAO,MAAM,CAAA;IACf,CAAC;IAED,MAAM,CAAC,KAA8B,EAAE,MAAe;QACpD,MAAM,MAAM,GAAG,KAAK,YAAY,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA;QAC7E,IAAI,GAAG,GAAG,MAAM,KAAK,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,GAAG,MAAM,CAAA;QACjE,MAAM,OAAO,GAAG,qBAAqB,EAAE,CAAA;QACvC,OAAO,MAAM,CAAC,GAAG,GAAG,GAAG,EAAE;YACvB,MAAM,GAAG,GAAG,MAAM,CAAC,MAAM,EAAE,CAAA;YAC3B,QAAQ,GAAG,KAAK,CAAC,EAAE;gBACjB,KAAK,CAAC;oBACJ,IAAI,GAAG,KAAK,CAAC,EAAE;wBACb,MAAK;qBACN;oBAED,OAAO,CAAC,OAAO,GAAG,MAAM,CAAC,KAAK,EAAE,CAAA;oBAChC,SAAQ;gBACV,KAAK,CAAC;oBACJ,IAAI,GAAG,KAAK,EAAE,EAAE;wBACd,MAAK;qBACN;oBAED,OAAO,CAAC,IAAI,GAAG,MAAM,CAAC,MAAM,EAAE,CAAA;oBAC9B,SAAQ;gBACV,KAAK,CAAC;oBACJ,IAAI,GAAG,KAAK,EAAE,EAAE;wBACd,MAAK;qBACN;oBAED,OAAO,CAAC,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,CAAA;oBAChC,SAAQ;gBACV,KAAK,CAAC;oBACJ,IAAI,GAAG,KAAK,EAAE,EAAE;wBACd,MAAK;qBACN;oBAED,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC,kBAAU,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC,CAAA;oBACjE,SAAQ;gBACV,KAAK,CAAC;oBACJ,IAAI,GAAG,KAAK,EAAE,EAAE;wBACd,MAAK;qBACN;oBAED,OAAO,CAAC,KAAK,GAAG,MAAM,CAAC,MAAM,EAAE,CAAA;oBAC/B,SAAQ;aACX;YACD,IAAI,CAAC,GAAG,GAAG,CAAC,CAAC,KAAK,CAAC,IAAI,GAAG,KAAK,CAAC,EAAE;gBAChC,MAAK;aACN;YACD,MAAM,CAAC,QAAQ,CAAC,GAAG,GAAG,CAAC,CAAC,CAAA;SACzB;QACD,OAAO,OAAO,CAAA;IAChB,CAAC;IAED,QAAQ,CAAC,MAAW;QAClB,OAAO;YACL,OAAO,EAAE,KAAK,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;YAC3D,IAAI,EAAE,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE;YACnD,MAAM,EAAE,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,SAAS;YAChE,QAAQ,EAAE,KAAK,CAAC,OAAO,CAAC,MAAM,aAAN,MAAM,uBAAN,MAAM,CAAE,QAAQ,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,kBAAU,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE;YACxG,KAAK,EAAE,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,SAAS;SAC9D,CAAA;IACH,CAAC;IAED,MAAM,CAAC,OAAoB;;QACzB,MAAM,GAAG,GAAQ,EAAE,CAAA;QACnB,IAAI,OAAO,CAAC,OAAO,KAAK,CAAC,EAAE;YACzB,GAAG,CAAC,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,CAAA;SAC1C;QACD,IAAI,OAAO,CAAC,IAAI,KAAK,EAAE,EAAE;YACvB,GAAG,CAAC,IAAI,GAAG,OAAO,CAAC,IAAI,CAAA;SACxB;QACD,IAAI,OAAO,CAAC,MAAM,KAAK,SAAS,EAAE;YAChC,GAAG,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAA;SAC5B;QACD,IAAI,MAAA,OAAO,CAAC,QAAQ,0CAAE,MAAM,EAAE;YAC5B,GAAG,CAAC,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,kBAAU,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAA;SACjE;QACD,IAAI,OAAO,CAAC,KAAK,KAAK,SAAS,EAAE;YAC/B,GAAG,CAAC,KAAK,GAAG,OAAO,CAAC,KAAK,CAAA;SAC1B;QACD,OAAO,GAAG,CAAA;IACZ,CAAC;IAED,MAAM,CAA+C,IAAQ;QAC3D,OAAO,mBAAW,CAAC,WAAW,CAAC,IAAI,aAAJ,IAAI,cAAJ,IAAI,GAAK,EAAU,CAAC,CAAA;IACrD,CAAC;IACD,WAAW,CAA+C,MAAS;;QACjE,MAAM,OAAO,GAAG,qBAAqB,EAAE,CAAA;QACvC,OAAO,CAAC,OAAO,GAAG,MAAA,MAAM,CAAC,OAAO,mCAAI,CAAC,CAAA;QACrC,OAAO,CAAC,IAAI,GAAG,MAAA,MAAM,CAAC,IAAI,mCAAI,EAAE,CAAA;QAChC,OAAO,CAAC,MAAM,GAAG,MAAA,MAAM,CAAC,MAAM,mCAAI,SAAS,CAAA;QAC3C,OAAO,CAAC,QAAQ,GAAG,CAAA,MAAA,MAAM,CAAC,QAAQ,0CAAE,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,kBAAU,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,KAAI,EAAE,CAAA;QAC/E,OAAO,CAAC,KAAK,GAAG,MAAA,MAAM,CAAC,KAAK,mCAAI,SAAS,CAAA;QACzC,OAAO,OAAO,CAAA;IAChB,CAAC;CACF,CAAA;AAED,SAAS,oBAAoB;IAC3B,OAAO;QACL,IAAI,EAAE,CAAC;QACP,EAAE,EAAE,EAAE;QACN,MAAM,EAAE,EAAE;QACV,WAAW,EAAE,SAAS;QACtB,QAAQ,EAAE,EAAE;QACZ,KAAK,EAAE,KAAK;QACZ,kBAAkB,EAAE,SAAS;QAC7B,SAAS,EAAE,SAAS;KACrB,CAAA;AACH,CAAC;AAEY,QAAA,UAAU,GAA8B;IACnD,MAAM,CAAC,OAAmB,EAAE,SAAqB,GAAG,CAAC,MAAM,CAAC,MAAM,EAAE;QAClE,IAAI,OAAO,CAAC,IAAI,KAAK,CAAC,EAAE;YACtB,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAA;SACrC;QACD,IAAI,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE;YACrB,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,CAAC,CAAA;SACrC;QACD,KAAK,MAAM,CAAC,IAAI,OAAO,CAAC,MAAM,EAAE;YAC9B,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,MAAM,CAAC,CAAE,CAAC,CAAA;SAC7B;QACD,IAAI,OAAO,CAAC,WAAW,KAAK,SAAS,EAAE;YACrC,qBAAS,CAAC,MAAM,CAAC,WAAW,CAAC,OAAO,CAAC,WAAW,CAAC,EAAE,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAA;SACtF;QACD,KAAK,MAAM,CAAC,IAAI,OAAO,CAAC,QAAQ,EAAE;YAChC,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,MAAM,CAAC,CAAE,CAAC,CAAA;SAC7B;QACD,IAAI,OAAO,CAAC,KAAK,KAAK,IAAI,EAAE;YAC1B,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,CAAA;SACtC;QACD,IAAI,OAAO,CAAC,kBAAkB,KAAK,SAAS,EAAE;YAC5C,mBAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,kBAAkB,EAAE,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAA;SAC/E;QACD,IAAI,OAAO,CAAC,SAAS,KAAK,SAAS,EAAE;YACnC,aAAG,CAAC,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAA;SACjE;QACD,OAAO,MAAM,CAAA;IACf,CAAC;IAED,MAAM,CAAC,KAA8B,EAAE,MAAe;QACpD,MAAM,MAAM,GAAG,KAAK,YAAY,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA;QAC7E,IAAI,GAAG,GAAG,MAAM,KAAK,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,GAAG,MAAM,CAAA;QACjE,MAAM,OAAO,GAAG,oBAAoB,EAAE,CAAA;QACtC,OAAO,MAAM,CAAC,GAAG,GAAG,GAAG,EAAE;YACvB,MAAM,GAAG,GAAG,MAAM,CAAC,MAAM,EAAE,CAAA;YAC3B,QAAQ,GAAG,KAAK,CAAC,EAAE;gBACjB,KAAK,CAAC;oBACJ,IAAI,GAAG,KAAK,CAAC,EAAE;wBACb,MAAK;qBACN;oBAED,OAAO,CAAC,IAAI,GAAG,MAAM,CAAC,KAAK,EAAS,CAAA;oBACpC,SAAQ;gBACV,KAAK,CAAC;oBACJ,IAAI,GAAG,KAAK,EAAE,EAAE;wBACd,MAAK;qBACN;oBAED,OAAO,CAAC,EAAE,GAAG,MAAM,CAAC,MAAM,EAAE,CAAA;oBAC5B,SAAQ;gBACV,KAAK,CAAC;oBACJ,IAAI,GAAG,KAAK,EAAE,EAAE;wBACd,MAAK;qBACN;oBAED,OAAO,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,CAAA;oBACpC,SAAQ;gBACV,KAAK,CAAC;oBACJ,IAAI,GAAG,KAAK,EAAE,EAAE;wBACd,MAAK;qBACN;oBAED,OAAO,CAAC,WAAW,GAAG,aAAa,CAAC,qBAAS,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC,CAAA;oBAC9E,SAAQ;gBACV,KAAK,CAAC;oBACJ,IAAI,GAAG,KAAK,EAAE,EAAE;wBACd,MAAK;qBACN;oBAED,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,CAAA;oBACtC,SAAQ;gBACV,KAAK,CAAC;oBACJ,IAAI,GAAG,KAAK,EAAE,EAAE;wBACd,MAAK;qBACN;oBAED,OAAO,CAAC,KAAK,GAAG,MAAM,CAAC,IAAI,EAAE,CAAA;oBAC7B,SAAQ;gBACV,KAAK,CAAC;oBACJ,IAAI,GAAG,KAAK,EAAE,EAAE;wBACd,MAAK;qBACN;oBAED,OAAO,CAAC,kBAAkB,GAAG,mBAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,CAAC,CAAA;oBACrE,SAAQ;gBACV,KAAK,EAAE;oBACL,IAAI,GAAG,KAAK,EAAE,EAAE;wBACd,MAAK;qBACN;oBAED,OAAO,CAAC,SAAS,GAAG,aAAG,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,CAAC,CAAA;oBACvD,SAAQ;aACX;YACD,IAAI,CAAC,GAAG,GAAG,CAAC,CAAC,KAAK,CAAC,IAAI,GAAG,KAAK,CAAC,EAAE;gBAChC,MAAK;aACN;YACD,MAAM,CAAC,QAAQ,CAAC,GAAG,GAAG,CAAC,CAAC,CAAA;SACzB;QACD,OAAO,OAAO,CAAA;IAChB,CAAC;IAED,QAAQ,CAAC,MAAW;QAClB,OAAO;YACL,IAAI,EAAE,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,sBAAsB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;YAClE,EAAE,EAAE,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE;YAC7C,MAAM,EAAE,KAAK,CAAC,OAAO,CAAC,MAAM,aAAN,MAAM,uBAAN,MAAM,CAAE,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE;YACrF,WAAW,EAAE,KAAK,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,iBAAiB,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,SAAS;YAC1F,QAAQ,EAAE,KAAK,CAAC,OAAO,CAAC,MAAM,aAAN,MAAM,uBAAN,MAAM,CAAE,QAAQ,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE;YAC3F,KAAK,EAAE,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK;YAC1D,kBAAkB,EAAE,KAAK,CAAC,MAAM,CAAC,kBAAkB,CAAC,CAAC,CAAC,CAAC,mBAAQ,CAAC,QAAQ,CAAC,MAAM,CAAC,kBAAkB,CAAC,CAAC,CAAC,CAAC,SAAS;YAC/G,SAAS,EAAE,KAAK,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,aAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS;SAChF,CAAA;IACH,CAAC;IAED,MAAM,CAAC,OAAmB;;QACxB,MAAM,GAAG,GAAQ,EAAE,CAAA;QACnB,IAAI,OAAO,CAAC,IAAI,KAAK,CAAC,EAAE;YACtB,GAAG,CAAC,IAAI,GAAG,oBAAoB,CAAC,OAAO,CAAC,IAAI,CAAC,CAAA;SAC9C;QACD,IAAI,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE;YACrB,GAAG,CAAC,EAAE,GAAG,OAAO,CAAC,EAAE,CAAA;SACpB;QACD,IAAI,MAAA,OAAO,CAAC,MAAM,0CAAE,MAAM,EAAE;YAC1B,GAAG,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAA;SAC5B;QACD,IAAI,OAAO,CAAC,WAAW,KAAK,SAAS,EAAE;YACrC,GAAG,CAAC,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC,WAAW,EAAE,CAAA;SACpD;QACD,IAAI,MAAA,OAAO,CAAC,QAAQ,0CAAE,MAAM,EAAE;YAC5B,GAAG,CAAC,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAA;SAChC;QACD,IAAI,OAAO,CAAC,KAAK,KAAK,IAAI,EAAE;YAC1B,GAAG,CAAC,KAAK,GAAG,OAAO,CAAC,KAAK,CAAA;SAC1B;QACD,IAAI,OAAO,CAAC,kBAAkB,KAAK,SAAS,EAAE;YAC5C,GAAG,CAAC,kBAAkB,GAAG,mBAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,kBAAkB,CAAC,CAAA;SACrE;QACD,IAAI,OAAO,CAAC,SAAS,KAAK,SAAS,EAAE;YACnC,GAAG,CAAC,SAAS,GAAG,aAAG,CAAC,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;SAC9C;QACD,OAAO,GAAG,CAAA;IACZ,CAAC;IAED,MAAM,CAA8C,IAAQ;QAC1D,OAAO,kBAAU,CAAC,WAAW,CAAC,IAAI,aAAJ,IAAI,cAAJ,IAAI,GAAK,EAAU,CAAC,CAAA;IACpD,CAAC;IACD,WAAW,CAA8C,MAAS;;QAChE,MAAM,OAAO,GAAG,oBAAoB,EAAE,CAAA;QACtC,OAAO,CAAC,IAAI,GAAG,MAAA,MAAM,CAAC,IAAI,mCAAI,CAAC,CAAA;QAC/B,OAAO,CAAC,EAAE,GAAG,MAAA,MAAM,CAAC,EAAE,mCAAI,EAAE,CAAA;QAC5B,OAAO,CAAC,MAAM,GAAG,CAAA,MAAA,MAAM,CAAC,MAAM,0CAAE,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAI,EAAE,CAAA;QACnD,OAAO,CAAC,WAAW,GAAG,MAAA,MAAM,CAAC,WAAW,mCAAI,SAAS,CAAA;QACrD,OAAO,CAAC,QAAQ,GAAG,CAAA,MAAA,MAAM,CAAC,QAAQ,0CAAE,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAI,EAAE,CAAA;QACvD,OAAO,CAAC,KAAK,GAAG,MAAA,MAAM,CAAC,KAAK,mCAAI,KAAK,CAAA;QACrC,OAAO,CAAC,kBAAkB;YACxB,MAAM,CAAC,kBAAkB,KAAK,SAAS,IAAI,MAAM,CAAC,kBAAkB,KAAK,IAAI;gBAC3E,CAAC,CAAC,mBAAQ,CAAC,WAAW,CAAC,MAAM,CAAC,kBAAkB,CAAC;gBACjD,CAAC,CAAC,SAAS,CAAA;QACf,OAAO,CAAC,SAAS;YACf,MAAM,CAAC,SAAS,KAAK,SAAS,IAAI,MAAM,CAAC,SAAS,KAAK,IAAI,CAAC,CAAC,CAAC,aAAG,CAAC,WAAW,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;QAC7G,OAAO,OAAO,CAAA;IAChB,CAAC;CACF,CAAA;AAmBD,SAAS,WAAW,CAAC,IAAU;IAC7B,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,EAAE,GAAG,IAAK,CAAA;IACtC,MAAM,KAAK,GAAG,CAAC,IAAI,CAAC,OAAO,EAAE,GAAG,IAAK,CAAC,GAAG,OAAS,CAAA;IAClD,OAAO,EAAC,OAAO,EAAE,KAAK,EAAC,CAAA;AACzB,CAAC;AAED,SAAS,aAAa,CAAC,CAAY;IACjC,IAAI,MAAM,GAAG,CAAC,CAAC,CAAC,OAAO,IAAI,CAAC,CAAC,GAAG,IAAK,CAAA;IACrC,MAAM,IAAI,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC,GAAG,OAAS,CAAA;IACpC,OAAO,IAAI,IAAI,CAAC,MAAM,CAAC,CAAA;AACzB,CAAC;AAED,SAAS,iBAAiB,CAAC,CAAM;IAC/B,IAAI,CAAC,YAAY,IAAI,EAAE;QACrB,OAAO,CAAC,CAAA;KACT;SAAM,IAAI,OAAO,CAAC,KAAK,QAAQ,EAAE;QAChC,OAAO,IAAI,IAAI,CAAC,CAAC,CAAC,CAAA;KACnB;SAAM;QACL,OAAO,aAAa,CAAC,qBAAS,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAA;KAC5C;AACH,CAAC;AAED,SAAS,KAAK,CAAC,KAAU;IACvB,OAAO,KAAK,KAAK,IAAI,IAAI,KAAK,KAAK,SAAS,CAAA;AAC9C,CAAC"}

package/dist/commands/sbom/types.d.ts

@@ -0,0 +1,4 @@
+export interface SbomPayloadData {
+    filePath: string;
+    content: any;
+}

package/dist/commands/sbom/types.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=types.js.map

package/dist/commands/sbom/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../src/commands/sbom/types.ts"],"names":[],"mappings":""}

package/dist/commands/sbom/upload.d.ts

@@ -0,0 +1,16 @@
+import { Command } from 'clipanion';
+export declare class UploadSbomCommand extends Command {
+    static paths: string[][];
+    static usage: import("clipanion").Usage;
+    private basePaths;
+    private service;
+    private env;
+    private tags;
+    private debug;
+    private config;
+    /**
+     * Execute the command, which means parse the SBOM file, ensure they are
+     * compliant with their schema and upload them to datadog.
+     */
+    execute(): Promise<0 | 1>;
+}

package/dist/commands/sbom/upload.js

@@ -0,0 +1,134 @@
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.UploadSbomCommand = void 0;
+const fs_1 = __importDefault(require("fs"));
+const os_1 = __importDefault(require("os"));
+const process_1 = __importDefault(require("process"));
+const chalk_1 = __importDefault(require("chalk"));
+const clipanion_1 = require("clipanion");
+const tags_1 = require("../../helpers/tags");
+const api_1 = require("./api");
+const bom_1_4_1 = require("./protobuf/bom-1.4");
+const sbom_intake_1 = require("./protobuf/sbom_intake");
+const validation_1 = require("./validation");
+const generatePayload = (payloadData, service, tags) => {
+    const spanTagsAsStringArray = Object.keys(tags).map((key) => `${key}:${tags[key]}`);
+    return sbom_intake_1.SBOMPayload.create({
+        host: os_1.default.hostname(),
+        source: 'CI',
+        entities: [
+            sbom_intake_1.SBOMEntity.create({
+                id: service,
+                type: sbom_intake_1.SBOMSourceType.CI_PIPELINE,
+                inUse: true,
+                generatedAt: new Date(),
+                ddTags: spanTagsAsStringArray,
+                cyclonedx: bom_1_4_1.Bom.fromJSON(payloadData.content),
+            }),
+        ],
+    });
+};
+class UploadSbomCommand extends clipanion_1.Command {
+    constructor() {
+        super(...arguments);
+        this.basePaths = clipanion_1.Option.Rest({ required: 1 });
+        this.service = clipanion_1.Option.String('--service');
+        this.env = clipanion_1.Option.String('--env');
+        this.tags = clipanion_1.Option.Array('--tags');
+        this.debug = clipanion_1.Option.Boolean('--debug');
+        this.config = {
+            apiKey: process_1.default.env.DATADOG_API_KEY || process_1.default.env.DD_API_KEY,
+            env: process_1.default.env.DD_ENV,
+            envVarTags: process_1.default.env.DD_TAGS,
+        };
+    }
+    /**
+     * Execute the command, which means parse the SBOM file, ensure they are
+     * compliant with their schema and upload them to datadog.
+     */
+    execute() {
+        return __awaiter(this, void 0, void 0, function* () {
+            const service = this.service || process_1.default.env.DD_SERVICE;
+            if (!service) {
+                this.context.stderr.write('Missing service\n');
+                return 1;
+            }
+            this.config.env = this.env || this.config.env;
+            if (!this.config.env) {
+                this.context.stderr.write('Missing env\n');
+                return 1;
+            }
+            if (!this.basePaths || !this.basePaths.length) {
+                this.context.stderr.write('Missing basePath\n');
+                return 1;
+            }
+            if (!this.config.apiKey) {
+                this.context.stderr.write('API key not defined\n');
+                return 1;
+            }
+            const api = (0, api_1.getApiHelper)(this.config.apiKey);
+            const spanTags = yield (0, tags_1.getSpanTags)(this.config, this.tags);
+            const validator = (0, validation_1.getValidator)();
+            for (const basePath of this.basePaths) {
+                if (this.debug) {
+                    this.context.stdout.write(`Processing file ${basePath}`);
+                }
+                if ((0, validation_1.validateSbomFile)(basePath, validator)) {
+                    // Get the payload to upload
+                    const payloadData = {
+                        filePath: basePath,
+                        content: JSON.parse(fs_1.default.readFileSync(basePath).toString('utf8')),
+                    };
+                    // If debug mode is activated, we write the payload in a file
+                    if (this.debug) {
+                        const debugFilePath = `${basePath}.payload.pbytes`;
+                        this.context.stdout.write(`Writing payload for debugging in: ${debugFilePath}\n`);
+                        const payloadBytes = sbom_intake_1.SBOMPayload.toJSON(generatePayload(payloadData, service, spanTags));
+                        fs_1.default.writeFileSync(debugFilePath, JSON.stringify(payloadBytes));
+                    }
+                    // Upload content
+                    try {
+                        const response = yield api(generatePayload(payloadData, service, spanTags));
+                        if (this.debug) {
+                            this.context.stdout.write(`Upload done, status: ${response.status}\n`);
+                        }
+                        this.context.stdout.write(`File ${basePath} successfully uploaded\n`);
+                    }
+                    catch (error) {
+                        process_1.default.stderr.write(`Error while writing the payload: ${error.message}\n`);
+                        if (error.response) {
+                            process_1.default.stderr.write(`API status: ${error.response.status}\n`);
+                        }
+                    }
+                }
+                else {
+                    this.context.stdout.write(`File ${chalk_1.default.red.bold(basePath)} is not a valid SBOM file.\n`);
+                }
+            }
+            this.context.stdout.write('Upload finished\n');
+            return 0;
+        });
+    }
+}
+exports.UploadSbomCommand = UploadSbomCommand;
+UploadSbomCommand.paths = [['sbom', 'upload']];
+UploadSbomCommand.usage = clipanion_1.Command.Usage({
+    description: 'Upload SBOM files to Datadog.',
+    details: `
+      This command uploads SBOM files to Datadog for dependency tracking.
+    `,
+    examples: [['Upload the SBOM file sbom.json', 'datadog-ci sbom upload --service my-service file.sbom']],
+});
+//# sourceMappingURL=upload.js.map

package/dist/commands/sbom/upload.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"upload.js","sourceRoot":"","sources":["../../../src/commands/sbom/upload.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,4CAAmB;AACnB,4CAAmB;AACnB,sDAA6B;AAI7B,kDAAyB;AACzB,yCAAyC;AAGzC,6CAA8C;AAE9C,+BAAkC;AAClC,gDAAsC;AACtC,wDAA8E;AAE9E,6CAA2D;AAE3D,MAAM,eAAe,GAAG,CAAC,WAA4B,EAAE,OAAe,EAAE,IAAc,EAAe,EAAE;IACrG,MAAM,qBAAqB,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,GAAG,IAAI,IAAI,CAAC,GAAqB,CAAC,EAAE,CAAC,CAAA;IAErG,OAAO,yBAAW,CAAC,MAAM,CAAC;QACxB,IAAI,EAAE,YAAE,CAAC,QAAQ,EAAE;QACnB,MAAM,EAAE,IAAI;QACZ,QAAQ,EAAE;YACR,wBAAU,CAAC,MAAM,CAAC;gBAChB,EAAE,EAAE,OAAO;gBACX,IAAI,EAAE,4BAAc,CAAC,WAAW;gBAChC,KAAK,EAAE,IAAI;gBACX,WAAW,EAAE,IAAI,IAAI,EAAE;gBACvB,MAAM,EAAE,qBAAqB;gBAC7B,SAAS,EAAE,aAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,OAAO,CAAC;aAC7C,CAAC;SACH;KACF,CAAC,CAAA;AACJ,CAAC,CAAA;AAED,MAAa,iBAAkB,SAAQ,mBAAO;IAA9C;;QAWU,cAAS,GAAG,kBAAM,CAAC,IAAI,CAAC,EAAC,QAAQ,EAAE,CAAC,EAAC,CAAC,CAAA;QACtC,YAAO,GAAG,kBAAM,CAAC,MAAM,CAAC,WAAW,CAAC,CAAA;QACpC,QAAG,GAAG,kBAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAA;QAC5B,SAAI,GAAG,kBAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAA;QAC7B,UAAK,GAAG,kBAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;QAEjC,WAAM,GAAG;YACf,MAAM,EAAE,iBAAO,CAAC,GAAG,CAAC,eAAe,IAAI,iBAAO,CAAC,GAAG,CAAC,UAAU;YAC7D,GAAG,EAAE,iBAAO,CAAC,GAAG,CAAC,MAAM;YACvB,UAAU,EAAE,iBAAO,CAAC,GAAG,CAAC,OAAO;SAChC,CAAA;IAkFH,CAAC;IAhFC;;;OAGG;IACU,OAAO;;YAClB,MAAM,OAAO,GAAuB,IAAI,CAAC,OAAO,IAAI,iBAAO,CAAC,GAAG,CAAC,UAAU,CAAA;YAE1E,IAAI,CAAC,OAAO,EAAE;gBACZ,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAA;gBAE9C,OAAO,CAAC,CAAA;aACT;YAED,IAAI,CAAC,MAAM,CAAC,GAAG,GAAG,IAAI,CAAC,GAAG,IAAI,IAAI,CAAC,MAAM,CAAC,GAAG,CAAA;YAE7C,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE;gBACpB,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,CAAA;gBAE1C,OAAO,CAAC,CAAA;aACT;YAED,IAAI,CAAC,IAAI,CAAC,SAAS,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE;gBAC7C,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,oBAAoB,CAAC,CAAA;gBAE/C,OAAO,CAAC,CAAA;aACT;YAED,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE;gBACvB,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAA;gBAElD,OAAO,CAAC,CAAA;aACT;YAED,MAAM,GAAG,GAA8D,IAAA,kBAAY,EAAC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAA;YAEvG,MAAM,QAAQ,GAAG,MAAM,IAAA,kBAAW,EAAC,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,IAAI,CAAC,CAAA;YAE1D,MAAM,SAAS,GAAQ,IAAA,yBAAY,GAAE,CAAA;YACrC,KAAK,MAAM,QAAQ,IAAI,IAAI,CAAC,SAAS,EAAE;gBACrC,IAAI,IAAI,CAAC,KAAK,EAAE;oBACd,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,mBAAmB,QAAQ,EAAE,CAAC,CAAA;iBACzD;gBAED,IAAI,IAAA,6BAAgB,EAAC,QAAQ,EAAE,SAAS,CAAC,EAAE;oBACzC,4BAA4B;oBAC5B,MAAM,WAAW,GAAoB;wBACnC,QAAQ,EAAE,QAAQ;wBAClB,OAAO,EAAE,IAAI,CAAC,KAAK,CAAC,YAAE,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;qBAChE,CAAA;oBAED,6DAA6D;oBAC7D,IAAI,IAAI,CAAC,KAAK,EAAE;wBACd,MAAM,aAAa,GAAG,GAAG,QAAQ,iBAAiB,CAAA;wBAClD,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,qCAAqC,aAAa,IAAI,CAAC,CAAA;wBACjF,MAAM,YAAY,GAAG,yBAAW,CAAC,MAAM,CAAC,eAAe,CAAC,WAAW,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAC,CAAA;wBACxF,YAAE,CAAC,aAAa,CAAC,aAAa,EAAE,IAAI,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC,CAAA;qBAC9D;oBAED,iBAAiB;oBACjB,IAAI;wBACF,MAAM,QAAQ,GAAG,MAAM,GAAG,CAAC,eAAe,CAAC,WAAW,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAC,CAAA;wBAC3E,IAAI,IAAI,CAAC,KAAK,EAAE;4BACd,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,wBAAwB,QAAQ,CAAC,MAAM,IAAI,CAAC,CAAA;yBACvE;wBACD,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,QAAQ,QAAQ,0BAA0B,CAAC,CAAA;qBACtE;oBAAC,OAAO,KAAK,EAAE;wBACd,iBAAO,CAAC,MAAM,CAAC,KAAK,CAAC,oCAAoC,KAAK,CAAC,OAAO,IAAI,CAAC,CAAA;wBAC3E,IAAI,KAAK,CAAC,QAAQ,EAAE;4BAClB,iBAAO,CAAC,MAAM,CAAC,KAAK,CAAC,eAAe,KAAK,CAAC,QAAQ,CAAC,MAAM,IAAI,CAAC,CAAA;yBAC/D;qBACF;iBACF;qBAAM;oBACL,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,QAAQ,eAAK,CAAC,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,8BAA8B,CAAC,CAAA;iBAC1F;aACF;YAED,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAA;YAE9C,OAAO,CAAC,CAAA;QACV,CAAC;KAAA;;AAtGH,8CAuGC;AAtGe,uBAAK,GAAG,CAAC,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC,AAAvB,CAAuB;AAE5B,uBAAK,GAAG,mBAAO,CAAC,KAAK,CAAC;IAClC,WAAW,EAAE,+BAA+B;IAC5C,OAAO,EAAE;;KAER;IACD,QAAQ,EAAE,CAAC,CAAC,gCAAgC,EAAE,uDAAuD,CAAC,CAAC;CACxG,CAAC,AANiB,CAMjB"}

package/dist/commands/sbom/validation.d.ts

@@ -0,0 +1,12 @@
+import Ajv from 'ajv';
+/**
+ * Get the validate function. Read all the schemas and return
+ * the function used to validate all SBOM documents.
+ */
+export declare const getValidator: () => Ajv;
+/**
+ * Validate an SBOM file.
+ * @param path - the path of the file to validate
+ * @param ajv - an instance of Ajv fully initialized and ready to use.
+ */
+export declare const validateSbomFile: (path: string, ajv: Ajv) => boolean;

package/dist/commands/sbom/validation.js

@@ -0,0 +1,51 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.validateSbomFile = exports.getValidator = void 0;
+const fs_1 = __importDefault(require("fs"));
+const ajv_1 = __importDefault(require("ajv"));
+const ajv_formats_1 = __importDefault(require("ajv-formats"));
+const bom_1_4_schema_json_1 = __importDefault(require("./json-schema/cyclonedx/bom-1.4.schema.json"));
+const jsf_0_82_schema_json_1 = __importDefault(require("./json-schema/jsf/jsf-0.82.schema.json"));
+const spdx_schema_json_1 = __importDefault(require("./json-schema/spdx/spdx.schema.json"));
+/**
+ * Get the validate function. Read all the schemas and return
+ * the function used to validate all SBOM documents.
+ */
+const getValidator = () => {
+    const ajv = new ajv_1.default({ strict: false, validateFormats: false });
+    ajv.addMetaSchema(spdx_schema_json_1.default);
+    ajv.addMetaSchema(jsf_0_82_schema_json_1.default);
+    (0, ajv_formats_1.default)(ajv);
+    return ajv;
+};
+exports.getValidator = getValidator;
+/**
+ * Validate an SBOM file.
+ * @param path - the path of the file to validate
+ * @param ajv - an instance of Ajv fully initialized and ready to use.
+ */
+const validateSbomFile = (path, ajv) => {
+    try {
+        // eslint-disable-next-line @typescript-eslint/no-unsafe-assignment
+        const fileContent = JSON.parse(fs_1.default.readFileSync(path).toString('utf8'));
+        const validateFunction = ajv.compile(bom_1_4_schema_json_1.default);
+        const isValid = validateFunction(fileContent);
+        if (!isValid) {
+            const errors = validateFunction.errors || [];
+            errors.forEach((message) => {
+                process.stderr.write(`Error while validating file: ${message}\n`);
+            });
+            return false;
+        }
+        return true;
+    }
+    catch (error) {
+        process.stderr.write(`Error while reading file: ${error.message}\n`);
+        return false;
+    }
+};
+exports.validateSbomFile = validateSbomFile;
+//# sourceMappingURL=validation.js.map

package/dist/commands/sbom/validation.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"validation.js","sourceRoot":"","sources":["../../../src/commands/sbom/validation.ts"],"names":[],"mappings":";;;;;;AAAA,4CAAmB;AAEnB,8CAAqB;AACrB,8DAAoC;AAEpC,sGAAyE;AACzE,kGAA8D;AAC9D,2FAA4D;AAE5D;;;GAGG;AACI,MAAM,YAAY,GAAG,GAAQ,EAAE;IACpC,MAAM,GAAG,GAAG,IAAI,aAAG,CAAC,EAAC,MAAM,EAAE,KAAK,EAAE,eAAe,EAAE,KAAK,EAAC,CAAC,CAAA;IAC5D,GAAG,CAAC,aAAa,CAAC,0BAAU,CAAC,CAAA;IAC7B,GAAG,CAAC,aAAa,CAAC,8BAAS,CAAC,CAAA;IAC5B,IAAA,qBAAU,EAAC,GAAG,CAAC,CAAA;IAEf,OAAO,GAAG,CAAA;AACZ,CAAC,CAAA;AAPY,QAAA,YAAY,gBAOxB;AAED;;;;GAIG;AACI,MAAM,gBAAgB,GAAG,CAAC,IAAY,EAAE,GAAQ,EAAW,EAAE;IAClE,IAAI;QACF,mEAAmE;QACnE,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,YAAE,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAA;QACtE,MAAM,gBAAgB,GAAG,GAAG,CAAC,OAAO,CAAC,6BAAe,CAAC,CAAA;QAErD,MAAM,OAAO,GAAG,gBAAgB,CAAC,WAAW,CAAC,CAAA;QAE7C,IAAI,CAAC,OAAO,EAAE;YACZ,MAAM,MAAM,GAAG,gBAAgB,CAAC,MAAM,IAAI,EAAE,CAAA;YAE5C,MAAM,CAAC,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;gBACzB,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,gCAAgC,OAAO,IAAI,CAAC,CAAA;YACnE,CAAC,CAAC,CAAA;YAEF,OAAO,KAAK,CAAA;SACb;QAED,OAAO,IAAI,CAAA;KACZ;IAAC,OAAO,KAAK,EAAE;QACd,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,6BAA6B,KAAK,CAAC,OAAO,IAAI,CAAC,CAAA;QAEpE,OAAO,KAAK,CAAA;KACb;AACH,CAAC,CAAA;AAxBY,QAAA,gBAAgB,oBAwB5B"}