Query: 2.4.6 Ensure pipeline steps sign the SBOM produced

Description

An SBOM is a file that specifies each component of software or a build process. It should be generated after every pipeline run. After it is generated, it must then be signed.

Query

Tables used in this query:

• github_my_repository
• github_workflow

Controls using this query:

• 2.4.6 Ensure pipeline steps sign the SBOM produced

SQL