From 1f86a7fd2a8d208fa4fe81c3fdca80802eb3785c Mon Sep 17 00:00:00 2001 From: Morgan Gangwere Date: Fri, 12 Dec 2025 16:31:36 -0800 Subject: [PATCH] fix(config): Polaris runner configuration updates. --- .github/workflows/kf-polaris-scan.yml | 29 +++++++++------------------ 1 file changed, 10 insertions(+), 19 deletions(-) diff --git a/.github/workflows/kf-polaris-scan.yml b/.github/workflows/kf-polaris-scan.yml index 6197546..136e26f 100644 --- a/.github/workflows/kf-polaris-scan.yml +++ b/.github/workflows/kf-polaris-scan.yml @@ -7,15 +7,13 @@ on: token: description: 'Secret token from caller workflow to access private packages' required: true + inputs: scan_branch: description: Incoming branch to release or main required: true type: string - - - - + jobs: build: runs-on: [ ubuntu-latest ] @@ -24,22 +22,15 @@ jobs: - name: Checkout Source uses: actions/checkout@v4 - name: Polaris Scan - uses: keyfactor/synopsys-action@v1.10.0 + uses: blackduck-inc/black-duck-security-scan@v2 with: ### SCANNING: Required fields - polaris_server_url: 'https://polaris.synopsys.com' - polaris_access_token: ${{ secrets.token }} + polaris_server_url: 'https://polaris.blackduck.com' + polaris_access_token: ${{ secrets.POLARIS_TOKEN }} polaris_assessment_types: "SCA,SAST" - polaris_application_id: 'Integrations' - polaris_project_id: ${{ github.event.repository.name }} - polaris_branch_id: ${{ inputs.scan_branch }} - ## SCANNING: Optional fields - polaris_application_name: 'Integrations' - polaris_project_name: ${{ github.event.repository.name }} - polaris_assessment_mode: "SOURCE_UPLOAD" - polaris_branch_name: ${{ github.scan_branch }} - - # ## PULL REQUEST COMMENTS: Uncomment below to enable - # polaris_prComment_enabled: false - # github_token: ${{ secrets.GITHUB_TOKEN }} # Required when PR comments is enabled \ No newline at end of file + polaris_application_name: integrations-${{ github.event.repository.name }} + github_token: ${{ secrets.token }} + + polaris_test_sast_location: "remote" + polaris_test_sca_location: "remote"