From 2a9ece170467e736b0eca2d08936e52a60d8e000 Mon Sep 17 00:00:00 2001
From: Andreea Andrisan <Andreea.Andrisan@analog.com>
Date: Wed, 11 Sep 2024 12:37:44 +0300
Subject: [PATCH] .github:workflows: add workflow file for blackduck scanning

This check will be triggered when a push is made on main branch of a tag
for release is created.
A blackduck scanning of the project will be made and uploaded on the
product page from analogdevices blackduck server.

Signed-off-by: Andreea Andrisan <Andreea.Andrisan@analog.com>
---
 .github/workflows/blackduck_scaninng.yml | 30 ++++++++++++++++++++++++
 1 file changed, 30 insertions(+)
 create mode 100644 .github/workflows/blackduck_scaninng.yml

diff --git a/.github/workflows/blackduck_scaninng.yml b/.github/workflows/blackduck_scaninng.yml
new file mode 100644
index 000000000..e2b2fdbcb
--- /dev/null
+++ b/.github/workflows/blackduck_scaninng.yml
@@ -0,0 +1,30 @@
+name: Blackduck Scanning
+
+on:
+  push:
+    branches:
+      - main
+    tags:
+      - v**
+
+jobs:
+  build:
+    runs-on: [ ubuntu-latest ]
+    steps:
+      - name: Checkout Source
+        uses: actions/checkout@v3
+      - name: Black Duck Scan
+        uses: synopsys-sig/synopsys-action@v1.11.0
+
+        ### Configure DETECT environment variables
+        env:
+          DETECT_PROJECT_NAME: oa_libiio
+          DETECT_PROJECT_VERSION_NAME: ${{ github.ref_name }}
+          DETECT_BLACKDUCK_SIGNATURE_SCANNER_LICENSE_SEARCH: true
+          DETECT_BLACKDUCK_SIGNATURE_SCANNER_COPYRIGHT_SEARCH: true
+          DETECT_EXCLUDED_DETECTOR_TYPES: GIT
+        with:
+          ### SCANNING: Required fields
+          blackduck_url: ${{ vars.BLACKDUCK_URL }}
+          blackduck_token: ${{ secrets.BLACKDUCK_TOKEN }}
+          blackduck_args: '--detect.wait.for.results=false'