Black Duck Security Scan

Version updated for https://github.com/blackduck-inc/black-duck-security-scan to version v2.8.0.

• This publisher is shown as ‘verified’ by GitHub.
• This action is used across all versions by 567 repositories.

Action Type

This is a Node action using Node version 20.

Go to the GitHub Marketplace to find the latest changes.

Action Summary

The Black Duck Security Scan GitHub Action integrates Static Analysis Security Testing (SAST) and Software Composition Analysis (SCA) into CI/CD pipelines, automating the detection of security vulnerabilities and compliance risks in code and dependencies. It utilizes Bridge-CLI to streamline workflows for various Black Duck security solutions, such as Polaris, Black Duck SCA, Coverity, and SRM, making it a versatile tool for enhancing application security during development.

Release notes

GitHub Issue feature enabled

• blackduck-inc
• GitHub Actions