From 3c3712cf933817220f80b28db3756f0ba816bab5 Mon Sep 17 00:00:00 2001
From: Jimmi Dyson <jimmidyson@gmail.com>
Date: Thu, 13 Mar 2025 09:37:05 +0000
Subject: [PATCH] ci: Replace deprecated blackduck scan action

---
 .../{synopsys.yaml => blackduck.yaml}         | 31 +++++++++++++------
 1 file changed, 21 insertions(+), 10 deletions(-)
 rename .github/workflows/{synopsys.yaml => blackduck.yaml} (66%)

diff --git a/.github/workflows/synopsys.yaml b/.github/workflows/blackduck.yaml
similarity index 66%
rename from .github/workflows/synopsys.yaml
rename to .github/workflows/blackduck.yaml
index 9df3de812..eb4d5675c 100644
--- a/.github/workflows/synopsys.yaml
+++ b/.github/workflows/blackduck.yaml
@@ -46,24 +46,35 @@ jobs:
       - name: Build Project
         run: devbox run -- make build-snapshot
 
+      - name: Set up Java 11
+        uses: actions/setup-java@v4
+        with:
+          java-version: "11"
+          distribution: "adopt"
+
+      - name: Setup go
+        uses: actions/setup-go@v5
+        with:
+          go-version-file: go.mod
+
       - name: Black Duck Full Scan
         if: ${{ github.event_name != 'pull_request' }}
-        uses: synopsys-sig/synopsys-action@v1.13.1
+        uses: blackduck-inc/black-duck-security-scan@v2.0.0
         with:
-          blackduck_url: ${{ secrets.BLACKDUCK_URL }}
-          blackduck_token: ${{ secrets.BLACKDUCK_API_TOKEN }}
+          blackducksca_url: ${{ secrets.BLACKDUCK_URL }}
+          blackducksca_token: ${{ secrets.BLACKDUCK_API_TOKEN }}
           github_token: ${{ secrets.GITHUB_TOKEN }}
-          blackduck_scan_full: true
-          blackduck_scan_failure_severities: 'BLOCKER,CRITICAL'
+          blackducksca_scan_full: true
+          blackducksca_scan_failure_severities: 'BLOCKER,CRITICAL'
 
       - name: Black Duck PR Scan
         if: ${{ github.event_name == 'pull_request' }}
-        uses: synopsys-sig/synopsys-action@v1.13.1
+        uses: blackduck-inc/black-duck-security-scan@v2.0.0
         env:
           DETECT_PROJECT_VERSION_NAME: ${{ github.base_ref }}
         with:
-          blackduck_url: ${{ secrets.BLACKDUCK_URL }}
-          blackduck_token: ${{ secrets.BLACKDUCK_API_TOKEN }}
+          blackducksca_url: ${{ secrets.BLACKDUCK_URL }}
+          blackducksca_token: ${{ secrets.BLACKDUCK_API_TOKEN }}
           github_token: ${{ secrets.GITHUB_TOKEN }}
-          blackduck_scan_full: false
-          blackduck_prComment_enabled: true
+          blackducksca_scan_full: false
+          blackducksca_prComment_enabled: true