squakez commented on issue #5033: URL: https://github.com/apache/camel-k/issues/5033#issuecomment-1882888495
> For me it's fine. But for having a way of knowing the vulnerabilities status during the development I'd prefer to have a job updating the SBOM on the repository once a week, so we could check if we are vulnerable to something with dependency track or other tools. We should have the same when publishing the nightly. The tools we're using should be able to use that artifact as well. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: commits-unsubscr...@camel.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
