.github:workflows: add workflow file for blackduck scanning

This check will be triggered when a push is made on main branch of a tag
for release is created.
A blackduck scanning of the project will be made and uploaded on the
product page from analogdevices blackduck server.

Signed-off-by: Andreea Andrisan <[email protected]>

.github/workflows/blackduck_scaninng.yml

@@ -0,0 +1,30 @@
+name: Blackduck Scanning
+
+on:
+  push:
+    branches:
+      - main
+    tags:
+      - v**
+
+jobs:
+  build:
+    runs-on: [ ubuntu-latest ]
+    steps:
+      - name: Checkout Source
+        uses: actions/checkout@v3
+      - name: Black Duck Scan
+        uses: synopsys-sig/[email protected]
+
+        ### Configure DETECT environment variables
+        env:
+          DETECT_PROJECT_NAME: oa_libiio
+          DETECT_PROJECT_VERSION_NAME: ${{ github.ref_name }}
+          DETECT_BLACKDUCK_SIGNATURE_SCANNER_LICENSE_SEARCH: true
+          DETECT_BLACKDUCK_SIGNATURE_SCANNER_COPYRIGHT_SEARCH: true
+          DETECT_EXCLUDED_DETECTOR_TYPES: GIT
+        with:
+          ### SCANNING: Required fields
+          blackduck_url: ${{ vars.BLACKDUCK_URL }}
+          blackduck_token: ${{ secrets.BLACKDUCK_TOKEN }}
+          blackduck_args: '--detect.wait.for.results=false'