forked from chuckaude/hello-java
-
Notifications
You must be signed in to change notification settings - Fork 0
45 lines (43 loc) · 1.41 KB
/
bd-snps-action.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
# example workflow for Black Duck scans using the Synopsys Action
# https://github.com/marketplace/actions/synopsys-action
name: bd-snps-action
on:
push:
branches: [ main, master, develop, stage, release ]
pull_request:
branches: [ main, master, develop, stage, release ]
workflow_dispatch:
jobs:
blackduck:
runs-on: ubuntu-latest
steps:
- name: Checkout Source
uses: actions/checkout@v4
- name: Setup Java JDK
uses: actions/setup-java@v4
with:
java-version: 17
distribution: microsoft
cache: maven
- name: Maven Build
run: mvn -B -DskipTests package
- name: Black Duck Scan
uses: synopsys-sig/[email protected]
env:
DETECT_PROJECT_NAME: ${{ github.event.repository.name }}
with:
blackduck_url: ${{ vars.BLACKDUCK_URL }}
blackduck_token: ${{ secrets.BLACKDUCK_API_TOKEN }}
blackduck_scan_failure_severities: 'BLOCKER'
blackduck_fixpr_enabled: true
blackduck_prComment_enabled: true
blackduck_reports_sarif_create: true
blackduck_upload_sarif_report: true
github_token: ${{ secrets.GITHUB_TOKEN }}
blackduck_args: '--blackduck.trust.cert=true --logging.level.detect=DEBUG'
# - name: Save Logs
# if: always()
# uses: actions/upload-artifact@v4
# with:
# name: bridge-logs
# path: ${{ github.workspace }}/.bridge