Skip to content

Commit 0dc7abd

Browse files
dependabot[bot]dependabot[bot]
authored
build(deps): Bump blackduck-inc/black-duck-security-scan from 2.0.0 to 2.1.0 (#1088)
Bumps [blackduck-inc/black-duck-security-scan](https://github.com/blackduck-inc/black-duck-security-scan) from 2.0.0 to 2.1.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/blackduck-inc/black-duck-security-scan/releases">blackduck-inc/black-duck-security-scan's releases</a>.</em></p> <blockquote> <p>Black Duck Security Scan v2.1.0 supports:</p> <ul> <li>return status for action -mark_build_status to set the build status success in case of exit code 8 break the build</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/blackduck-inc/black-duck-security-scan/commit/66ede8f408f5c8eb3affd1c8cdfa6eb321c3aa97"><code>66ede8f</code></a> Merge pull request <a href="https://redirect.github.com/blackduck-inc/black-duck-security-scan/issues/52">#52</a> from blackduck-inc/upgrade-version-2.1.0</li> <li><a href="https://github.com/blackduck-inc/black-duck-security-scan/commit/f6f5fd027c99a1f3f81e3215dc7810e6961fd7b1"><code>f6f5fd0</code></a> feat: version upgrade to v2.1.0</li> <li><a href="https://github.com/blackduck-inc/black-duck-security-scan/commit/fb3ddf41511eb8774fb45adc238df42f79a3ca35"><code>fb3ddf4</code></a> feat: [SIGINT-2798] Add mark_build_status support and return status code from...</li> <li><a href="https://github.com/blackduck-inc/black-duck-security-scan/commit/6c5b984a696701d6818db4ab9345d01cef32b3f5"><code>6c5b984</code></a> Merge pull request <a href="https://redirect.github.com/blackduck-inc/black-duck-security-scan/issues/49">#49</a> from blackduck-inc/fix-polaris-bridge-job-failure</li> <li><a href="https://github.com/blackduck-inc/black-duck-security-scan/commit/074ee526c38b6fd3fc945cd09da240af3b485877"><code>074ee52</code></a> Fix: Added make module to the script to resolve Polaris-Bridge job failure in...</li> <li><a href="https://github.com/blackduck-inc/black-duck-security-scan/commit/49ab8c3bd24350180042a8a36f01705bd9c7ec7c"><code>49ab8c3</code></a> Fix for polaris-bridge job failure in GitLab CI pipeline (<a href="https://redirect.github.com/blackduck-inc/black-duck-security-scan/issues/48">#48</a>)</li> <li><a href="https://github.com/blackduck-inc/black-duck-security-scan/commit/950a0556cfe1e19918552cd2533e1712f5d36175"><code>950a055</code></a> feat: [SIGINT-2798] Implement Unit Tests for BridgeExecuted and Exit Code Han...</li> <li><a href="https://github.com/blackduck-inc/black-duck-security-scan/commit/3bec5764d98015cfad17dcbe7ea045d79609615b"><code>3bec576</code></a> Merge pull request <a href="https://redirect.github.com/blackduck-inc/black-duck-security-scan/issues/46">#46</a> from blackduck-inc/SIGINT-2798</li> <li><a href="https://github.com/blackduck-inc/black-duck-security-scan/commit/1f013a2c00249943811cb083f5c61b2cae6e0dd0"><code>1f013a2</code></a> feat: [SIGINT-2798] Add mark_build_status support and return status code from...</li> <li><a href="https://github.com/blackduck-inc/black-duck-security-scan/commit/298eb6b22d44c3f699eb726c27b290f7f82f541a"><code>298eb6b</code></a> feat: [SIGINT-2798] Add mark_build_status support and return status code from...</li> <li>Additional commits viewable in <a href="https://github.com/blackduck-inc/black-duck-security-scan/compare/v2.0.0...v2.1.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=blackduck-inc/black-duck-security-scan&package-manager=github_actions&previous-version=2.0.0&new-version=2.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
1 parent 9d9bbe5 commit 0dc7abd

File tree

1 file changed

+4
-2
lines changed

1 file changed

+4
-2
lines changed

.github/workflows/blackduck.yaml

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -24,6 +24,8 @@ jobs:
2424
security:
2525
if: github.repository == 'nutanix-cloud-native/cluster-api-runtime-extensions-nutanix'
2626
runs-on: ubuntu-22.04
27+
permissions:
28+
pull-requests: write
2729
steps:
2830
- name: Checkout
2931
uses: actions/checkout@v4
@@ -59,7 +61,7 @@ jobs:
5961

6062
- name: Black Duck Full Scan
6163
if: ${{ github.event_name != 'pull_request' }}
62-
uses: blackduck-inc/black-duck-security-scan@v2.0.0
64+
uses: blackduck-inc/black-duck-security-scan@v2.1.0
6365
with:
6466
blackducksca_url: ${{ secrets.BLACKDUCK_URL }}
6567
blackducksca_token: ${{ secrets.BLACKDUCK_API_TOKEN }}
@@ -69,7 +71,7 @@ jobs:
6971

7072
- name: Black Duck PR Scan
7173
if: ${{ github.event_name == 'pull_request' }}
72-
uses: blackduck-inc/black-duck-security-scan@v2.0.0
74+
uses: blackduck-inc/black-duck-security-scan@v2.1.0
7375
env:
7476
DETECT_PROJECT_VERSION_NAME: ${{ github.base_ref }}
7577
with:

0 commit comments

Comments
 (0)