Skip to content

Commit

Permalink
remove upload
Browse files Browse the repository at this point in the history
  • Loading branch information
@morri-son
morri-son committed Feb 27, 2025
1 parent 6b99b65 commit 03bb82c
Showing 1 changed file with 5 additions and 4 deletions.
9 changes: 5 additions & 4 deletions .github/workflows/blackduck_scan.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,10 +2,10 @@ name: Blackduck SCA Scan
on:
push:
branches: [ "main" ]
pull_request:
pull_request_target:
branches: [ "main" ]
schedule:
- cron: '5 0 * * 0'
- cron: '15 1 * * 0'
workflow_dispatch:

permissions:
Expand All @@ -20,7 +20,7 @@ jobs:
uses: actions/checkout@v4

- name: Run Black Duck Full SCA Scan (Push, Manual Trigger or Schedule)
if: ${{ github.event_name != 'pull_request' }}
if: ${{ github.event_name != 'pull_request_target' }}
uses: blackduck-inc/black-duck-security-scan@v2.0.0
env:
DETECT_PROJECT_USER_GROUPS: opencomponentmodel
Expand All @@ -36,7 +36,7 @@ jobs:
blackducksca_scan_full: true

- name: Run Black Duck SCA Scan (Pull Requests)
if: ${{ github.event_name == 'pull_request' }}
if: ${{ github.event_name == 'pull_request_target' }}
# The action sets blackducksca_scan_full internally: for pushes to true and PRs to false
uses: blackduck-inc/black-duck-security-scan@v2.0.0
env:
Expand All @@ -52,3 +52,4 @@ jobs:
blackducksca_token: ${{ secrets.BLACKDUCK_API_TOKEN }}

Check warning

Code scanning / CodeQL

Unpinned tag for a non-immutable Action in workflow Medium

Unpinned 3rd party Action 'Blackduck SCA Scan' step
Uses Step
Loading
uses 'blackduck-inc/black-duck-security-scan' with ref 'v2.0.0', not a pinned commit hash
blackducksca_scan_full: false
blackducksca_prComment_enabled: true

0 comments on commit 03bb82c

Please sign in to comment.