update sbom pipeline #5

	name: SBOM

	on:
	push:
	branches:
	- sbom
	workflow_dispatch:

	jobs:
	build-test-push:
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@v3
	name: checkout

	- name: Cache node modules
	uses: actions/cache@v1
	env:
	cache-name: cache-node-modules
	with:
	path: ~/.npm
	key: ${{ runner.os }}-build-${{ env.cache-name }}-${{ hashFiles('**/package-lock.json') }}
	restore-keys: \|
	${{ runner.os }}-build-${{ env.cache-name }}-
	${{ runner.os }}-build-
	${{ runner.os }}-

	- name: Scan current project
	uses: anchore/scan-action@v3
	id: scan
	with:
	path: "."
	fail-build: false

	- name: Upload anchore scan SARIF report
	uses: github/codeql-action/upload-sarif@v2
	with:
	sarif_file: ${{ steps.scan.outputs.sarif }}

Provide feedback