Black Duck Security: Committed polaris-workflow.yml

Black Duck · Black Duck · commit d6aa948e3c94 · 2025-07-30T01:11:58.000Z
diff --git a/.github/workflows/polaris-workflow.yml b/.github/workflows/polaris-workflow.yml
@@ -0,0 +1,36 @@
+name: Polaris Security Scan
+on:
+  push:
+    branches:
+      - main
+      - master
+      - develop
+      - stage
+      - release
+  pull_request:
+    branches:
+      - main
+      - master
+      - develop
+      - stage
+      - release
+  workflow_dispatch: {}
+jobs:
+  polaris:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout Source
+        uses: actions/checkout@v4
+      - name: Polaris Security Scan
+        id: polaris-scan
+        uses: blackduck-inc/black-duck-security-scan@v2
+        with:
+          polaris_server_url: ${{ vars.POLARIS_URL }}
+          polaris_access_token: ${{ secrets.POLARIS_ACCESS_TOKEN }}
+          polaris_assessment_types: SAST,SCA
+          polaris_waitForScan: true
+          mark_build_status: failure
+          include_diagnostics: false
+          polaris_prComment_enabled: false
+          polaris_reports_sarif_create: false
+          polaris_upload_sarif_report: false
