Skip to content
Synopsys Security Testing for Black Duck

new test file and updated test file for code tagging test #45

Sign in to view logs

new test file and updated test file for code tagging test

new test file and updated test file for code tagging test #45

Workflow file for this run

.github/workflows/synopsys-blackduck.yml at f24a3a4
name: Synopsys Security Testing for Black Duck
on:
push:
branches: [ master, main ]
pull_request:
branches: [ master, main ]
jobs:
build:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v3
- name: Synopsys Action
uses: synopsys-sig/[email protected]
with:
blackduck_apiToken: ${{ secrets.BLACKDUCK_API_TOKEN }}
blackduck_url: ${{ secrets.BLACKDUCK_URL }}
# Optional parameter. By default, pushes will initiate a full "intelligent" scan and pull requests
# will initiate a rapid scan.
blackduck_scan_full: true
# Required parameter if blackduck_automation_fixpr is enabled
# Make sure GITHUB_TOKEN have appropriate permissions
github_token: ${{ secrets.MY_GITHUB_TOKEN }}
# Optional parameter. By default, create fix pull requests if vulnerabilities are reported
# Passing false will disable fix pull request creation
blackduck_automation_fixpr: false
# Optional parameter. The values could be. ALL|NONE|BLOCKER|CRITICAL|MAJOR|MINOR|OK|TRIVIAL|UNSPECIFIED
# Single parameter
#blackduck_scan_failure_severities: "ALL"
# multiple parameters
#blackduck_scan_failure_severities: "NONE"
blackduck_scan_failure_severities: "BLOCKER,CRITICAL"
blackduck_automation_prcomment: true
# Optional parameter, but usually specified - the location of the Synopsys Bridge software
# The Synopsys Bridge software distribution is platform specific - this must match the host OS
# of your runner. For example in this case, we are using the latest version for Linux.
#bridge_download_url: ${{ env.LINUX_BRIDGE_URL }}