From 5d6d0c406d03a785734a5618522f4443b2344299 Mon Sep 17 00:00:00 2001
From: johnliu25 <zihui.liu@nutanix.com>
Date: Wed, 16 Oct 2024 11:20:54 -0700
Subject: [PATCH] NCN-102997: Enable blackduck scan on
 nkp-nutanix-products-catalog repo (#13)

---
 .github/workflows/synopsys-schedule.yaml | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 .github/workflows/synopsys-schedule.yaml

diff --git a/.github/workflows/synopsys-schedule.yaml b/.github/workflows/synopsys-schedule.yaml
new file mode 100644
index 0000000..987ab41
--- /dev/null
+++ b/.github/workflows/synopsys-schedule.yaml
@@ -0,0 +1,20 @@
+
+name: Black Duck Daily Policy Check
+on:
+  workflow_dispatch: # Enables manual triggering of the workflow
+jobs:
+  security:
+    if: github.repository == 'nutanix-cloud-native/nkp-nutanix-product-catalog'
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Black Duck Full Scan
+        uses: synopsys-sig/synopsys-action@v1.10.0
+        with:
+          blackduck_url: ${{ secrets.BLACKDUCK_URL }}
+          blackduck_token: ${{ secrets.BLACKDUCK_API_TOKEN }}
+          github_token: ${{ secrets.GITHUB_TOKEN }}
+          blackduck_scan_full: true
+          blackduck_scan_failure_severities: 'BLOCKER,CRITICAL'