Skip to content

Commit 062a02b

Browse files
dependabot[bot]dependabot[bot]
authored
build(deps): Bump blackduck-inc/black-duck-security-scan from 2.1.0 to 2.1.1 (#1095)
Bumps [blackduck-inc/black-duck-security-scan](https://github.com/blackduck-inc/black-duck-security-scan) from 2.1.0 to 2.1.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/blackduck-inc/black-duck-security-scan/releases">blackduck-inc/black-duck-security-scan's releases</a>.</em></p> <blockquote> <h2>Black Duck Security Scan v2.1.1</h2> <p><strong>Black Duck Security Scan v2.1.1 supports:</strong></p> <ul> <li>SARIF upload to GitHub Advanced Security dashboard for GitHub Enterprise Server.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/blackduck-inc/black-duck-security-scan/commit/6ee400ee2502a366bdff13cddae76bbde804fd20"><code>6ee400e</code></a> Merge pull request <a href="https://redirect.github.com/blackduck-inc/black-duck-security-scan/issues/55">#55</a> from blackduck-inc/fix-enterprise-api-url-build-status</li> <li><a href="https://github.com/blackduck-inc/black-duck-security-scan/commit/f45da4f59f132af928491bcc0cdfc93a407673cc"><code>f45da4f</code></a> fix: update mark_build_status functinality with GitHub Enterprise API URL cha...</li> <li><a href="https://github.com/blackduck-inc/black-duck-security-scan/commit/af910324ab22464eedd40bdf98274fcbc0656c57"><code>af91032</code></a> Merge pull request <a href="https://redirect.github.com/blackduck-inc/black-duck-security-scan/issues/54">#54</a> from blackduck-inc/upgrade-version-2.1.1</li> <li><a href="https://github.com/blackduck-inc/black-duck-security-scan/commit/ba248b4fcfda6d412ec22b83e32e88da88789e96"><code>ba248b4</code></a> feat: version upgrade to v2.1.1</li> <li><a href="https://github.com/blackduck-inc/black-duck-security-scan/commit/5d747eeada703c2cb1f4b1c07bd6110c23ae820e"><code>5d747ee</code></a> Merge pull request <a href="https://redirect.github.com/blackduck-inc/black-duck-security-scan/issues/53">#53</a> from blackduck-inc/fix-enterprise-api-url</li> <li><a href="https://github.com/blackduck-inc/black-duck-security-scan/commit/87ba660dd01cbe0bfda673b75a1200934bdda08f"><code>87ba660</code></a> fix: update GitHub Enterprise API URL</li> <li>See full diff in <a href="https://github.com/blackduck-inc/black-duck-security-scan/compare/v2.1.0...v2.1.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=blackduck-inc/black-duck-security-scan&package-manager=github_actions&previous-version=2.1.0&new-version=2.1.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
1 parent 78207cc commit 062a02b

File tree

1 file changed

+2
-2
lines changed

1 file changed

+2
-2
lines changed

.github/workflows/blackduck.yaml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -61,7 +61,7 @@ jobs:
6161

6262
- name: Black Duck Full Scan
6363
if: ${{ github.event_name != 'pull_request' }}
64-
uses: blackduck-inc/[email protected].0
64+
uses: blackduck-inc/[email protected].1
6565
with:
6666
blackducksca_url: ${{ secrets.BLACKDUCK_URL }}
6767
blackducksca_token: ${{ secrets.BLACKDUCK_API_TOKEN }}
@@ -71,7 +71,7 @@ jobs:
7171

7272
- name: Black Duck PR Scan
7373
if: ${{ github.event_name == 'pull_request' }}
74-
uses: blackduck-inc/[email protected].0
74+
uses: blackduck-inc/[email protected].1
7575
env:
7676
DETECT_PROJECT_VERSION_NAME: ${{ github.base_ref }}
7777
with:

0 commit comments

Comments
 (0)