From 0d2f9c8d7494f124d7b437aaeb13ba87ac60ae78 Mon Sep 17 00:00:00 2001
From: venkats09 <97122017+venkats09@users.noreply.github.com>
Date: Thu, 14 Jul 2022 15:04:41 -0700
Subject: [PATCH] CEC-1955 synopsys blackduck (#166)

* Testing the blackduck integration

* Updated the depth to 0

* updated the scheduler
---
 .github/workflows/blackduck.yml | 40 +++++++++++++++++++++++++++++++++
 1 file changed, 40 insertions(+)
 create mode 100644 .github/workflows/blackduck.yml

diff --git a/.github/workflows/blackduck.yml b/.github/workflows/blackduck.yml
new file mode 100644
index 0000000..f69b1a3
--- /dev/null
+++ b/.github/workflows/blackduck.yml
@@ -0,0 +1,40 @@
+name: Blackduck
+
+on:
+  schedule:
+    # run scans twice a month
+    - cron: "0 2 1,15 * *"
+
+jobs:
+  blackduck:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout Code
+        uses: actions/checkout@v2
+
+      - name: Use Node.js ${{ matrix.node-version }}
+        uses: actions/setup-node@v2
+        with:
+          node-version: "16"
+          cache: "npm"
+      - run: npm install
+      - run: npm run build
+
+      # ota-admin-portal
+      - name: Run Synopsys Detect - ota-admin-portal
+        uses: synopsys-sig/detect-action@v0.3.2
+        env:
+          DETECT_PROJECT_NAME: ota-admin-portal
+          DETECT_EXCLUDED_DIRECTORIES: node_modules
+          DETECT_PROJECT_VERSION_NAME: default
+          DETECT_NPM_INCLUDE_DEV_DEPENDENCIES: "FALSE"
+          # DETECT_DETECTOR_SEARCH_EXCLUSION_DEFAULTS: "true"
+          DETECT_DETECTOR_SEARCH_DEPTH: 0
+          DETECT_DETECTOR_SEARCH_CONTINUE: "true"
+
+        with:
+          github-token: ${{ secrets.GITHUB_TOKEN }}
+          detect-version: 7.9.0
+          blackduck-url: ${{ secrets.BLACKDUCK_URL }}
+          blackduck-api-token: ${{ secrets.BLACKDUCK_API_KEY }}
+          scan-mode: INTELLIGENT