feat: Add script to generate Software Bill of Materials (SBOM)

Benjamin Le Diguerherrequested to merge
bld-generate-sbom-of-built-images into main

(This is my first MR) This merge request adds stage/job to generate a Software Bill of Materials (SBOM) of built images. The script performs a security scan using Trivy to generates a CycloneDX SBOM file and publishes it as an artifact. Please review and provide feedback on the implementation and any potential improvements.

The SBOM file can then be imported into a tool such as Dependency Track for vulnerability scan.

Closes #18 (closed)

Edited by Benjamin Le Diguerher

Merge request reports