Skip to content

Daanoz/blackduck-scanner-action

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
.editorconfig
.editorconfig
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.MD
README.MD
 
 
action.yml
action.yml
 
 
entrypoint.sh
entrypoint.sh
 
 

Repository files navigation

Black Dock Scanner action

A Github action for running Black Duck analysis on your codebase inside a Docker container.

Required parameters

Parameter Description
projectName Your project name in BlackDuck
versionPrefix Version prefix
token Black Duck token token
url Black Duck server url
sourePath source path
extraArgs Extra arguments that will be passed to the detector

Sample Configuration

To prevent your token from showing in the runner's output, it is advised to store the token configuration inside of a github secret variable.

The listing below uses the secret BLACKDUCK_TOKEN from your project's configuration.

blackduck:
  name: BlackDuck
  runs-on: self-hosted
  steps:
    - uses: philips-labs/blackduck-scanner-action@v1
      with:
        token: ${{ secrets.BLACKDUCK_TOKEN }}
        projectName: Your project name
        versionPrefix: You version prefix
        url: https://your.black.duck.swamp/
        sourcePath: /code
        extraArgs: --detect.yarn.prod.only=true

About

BlackDuck GItHub Action

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

9 tags

Packages

No packages published

Languages

  • Shell 75.4%
  • Dockerfile 24.6%