From 077dbf95c293663599d6986710916373ca3d777a Mon Sep 17 00:00:00 2001
From: Sudo-Ivan <ivan@quad4.io>
Date: Mon, 29 Dec 2025 20:13:19 -0600
Subject: [PATCH] Add container image scanning and SBOM generation tasks to
 Taskfile

---
 Taskfile.yml | 14 +++++++++++++-
 1 file changed, 13 insertions(+), 1 deletion(-)

diff --git a/Taskfile.yml b/Taskfile.yml
index 48f17e7..1023ae6 100644
--- a/Taskfile.yml
+++ b/Taskfile.yml
@@ -25,7 +25,7 @@ tasks:
   publish:
     desc: Publish to npm registry
     cmds:
-      - pnpm publish
+      - pnpm publish --no-git-checks
 
   preview:
     desc: Preview production build
@@ -80,6 +80,18 @@ tasks:
     desc: Build and run Podman container
     deps: [podman-build, podman-run]
 
+  scan:
+    desc: Scan container image with trivy
+    cmds:
+      - trivy image --scanners vuln surveilled
+
+  sbom:
+    desc: Generate SBOM with trivy
+    cmds:
+      - mkdir -p sbom
+      - trivy fs --format spdx-json --include-dev-deps --output sbom/sbom.spdx.json .
+      - trivy fs --format cyclonedx --include-dev-deps --output sbom/sbom.cyclonedx.json .
+
   setup:
     desc: Setup development environment
     cmds: