Skip to content

philips-labs/blackduck-scanner-action

Use this GitHub action with your project
Add this Action to an existing workflow or create a new one
View on Marketplace
BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

25 Commits
.editorconfig
.editorconfig
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.MD
README.MD
 
 
action.yml
action.yml
 
 
entrypoint.sh
entrypoint.sh
 
 

Repository files navigation

Black Duck Scanner action

Warning. This action is no longer maintained. Synopsys released their own action. Please use theirs!

A Github action for running Black Duck analysis on your codebase inside a Docker container.

Required parameters

Parameter Description
projectName Your project name in BlackDuck
versionPrefix Version prefix
token Black Duck token token
url Black Duck server url
sourePath source path
extraArgs Extra arguments that will be passed to the detector

Sample Configuration

To prevent your token from showing in the runner's output, it is advised to store the token configuration inside of a github secret variable.

The listing below uses the secret BLACKDUCK_TOKEN from your project's configuration.

blackduck:
  name: BlackDuck
  runs-on: self-hosted
  steps:
    - uses: philips-labs/blackduck-scanner-action@v1
      with:
        token: ${{ secrets.BLACKDUCK_TOKEN }}
        projectName: Your project name
        versionPrefix: You version prefix
        url: https://your.black.duck.swamp/
        sourcePath: /code
        extraArgs: --detect.yarn.prod.only=true

About

BlackDuck GItHub Action

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

8 stars

Watchers

5 watching

Forks

5 forks
Report repository

Releases 10

v2.0 - Use Black Duck scanner 7.x Latest
Dec 11, 2021
+ 9 releases

Packages

No packages published

Contributors 4

  •  
  •  
  •  
  •  

Languages