From 7bf3d0eca4cd1ff01b5f5a4bb1b03358dc0618e6 Mon Sep 17 00:00:00 2001
From: Samir Mlika <samir.mlika@askui.com>
Date: Wed, 24 Dec 2025 16:02:11 +0100
Subject: [PATCH 1/2] ci: ensure SBOM generation runs after PyPI publish

---
 .github/workflows/publish.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/publish.yaml b/.github/workflows/publish.yaml
index 5d4c2496..2eb5745d 100644
--- a/.github/workflows/publish.yaml
+++ b/.github/workflows/publish.yaml
@@ -21,4 +21,6 @@ jobs:
       - name: Publish package distributions to PyPI
         run: pdm publish
   generate-and-release-sbom:
+    needs: pypi-publish
+    name: Generate and Release SBOM
     uses: ./.github/workflows/generate_and_release_sbom.yaml

From 48154f6e7b2e1ebcc1dab7b9a7969ddf4fbcad6c Mon Sep 17 00:00:00 2001
From: Samir Mlika <samir.mlika@askui.com>
Date: Wed, 24 Dec 2025 16:29:27 +0100
Subject: [PATCH 2/2] fix workflow

---
 .github/workflows/publish.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/publish.yaml b/.github/workflows/publish.yaml
index 2eb5745d..597fe728 100644
--- a/.github/workflows/publish.yaml
+++ b/.github/workflows/publish.yaml
@@ -24,3 +24,4 @@ jobs:
     needs: pypi-publish
     name: Generate and Release SBOM
     uses: ./.github/workflows/generate_and_release_sbom.yaml
+    secrets: inherit