Add conditional for SAST test type in workflow #8
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Black Duck Security Scan - Lightbeam | |
| on: | |
| push: | |
| branches: [main, master, develop, stage, release] | |
| pull_request: | |
| branches: [main, master, develop, stage, release] | |
| workflow_dispatch: | |
| #on: | |
| # schedule: | |
| # # Runs every day at 09:00 UTC | |
| # - cron: '*/10 * * * *' | |
| jobs: | |
| build: | |
| runs-on: [ubuntu-latest] | |
| steps: | |
| - name: Checkout Source | |
| uses: actions/checkout@v4 | |
| - name: Polaris Scan | |
| uses: blackduck-inc/black-duck-security-scan@v2 | |
| with: | |
| polaris_server_url: 'https://poc.polaris.blackduck.com' | |
| polaris_access_token: ${{ secrets.POLARISPOC_ACCESS_TOKEN_Lightbeam }} | |
| polaris_assessment_types: SAST | |
| polaris_test_sast_type: SAST-RAPID #run a rapid-sast scan, SIGMA | |
| polaris_application_name: Lightbeam | |
| polaris_project_name: ${{ github.event.repository.name }} | |
| polaris_branch_name: ${{ github.ref_name }} | |
| polaris_prComment_enabled: true | |
| #polaris_reports_sarif_create: true | |
| #polaris_upload_sarif_report: true | |
| #coverity_build_command: mvn -B -DskipTests package | |
| #coverity_clean_command: mvn -B clean | |
| github_token: ${{ secrets.GITHUB_TOKEN }} | |
| include_diagnostics: false |