add blackduck scan

.github/workflows/blackduck.yml

@@ -2,8 +2,6 @@ name: blackduck
 on:
   push:
     branches: [main]
-  pull_request:
-    branches: [main]
 
 permissions:
   issues: write
@@ -17,7 +15,6 @@ jobs:
       - name: Checkout Source
         uses: actions/checkout@v3
       - name: Black Duck Full Scan
-        #if: ${{ github.event_name != 'pull_request' }}
         uses: synopsys-sig/[email protected]
         env:
           DETECT_PROJECT_NAME: "MED_ca-injector"
@@ -27,20 +24,7 @@ jobs:
           blackduck_scan_full: true
           blackduck_scan_failure_severities: "BLOCKER,CRITICAL"
           blackduck_fixpr_enabled: true
-          blackduck_prComment_enabled: true
           blackduck_fixpr_maxCount: 5
           blackduck_fixpr_filter_severities: "CRITICAL,HIGH"
           blackduck_fixpr_useUpgradeGuidance: "SHORT_TERM,LONG_TERM"
           github_token: ${{ secrets.GITHUB_TOKEN }}
-
-      # - name: Black Duck PR Scan
-      #   if: ${{ github.event_name == 'pull_request' }}
-      #   uses: synopsys-sig/[email protected]
-      #   env:
-      #     DETECT_PROJECT_NAME: "MED_ca-injector"
-      #   with:
-      #     blackduck_url: ${{ secrets.BLACKDUCK_URL }}
-      #     blackduck_token: ${{ secrets.BLACKDUCK_TOKEN }}
-      #     blackduck_scan_full: false
-      #     blackduck_prComment_enabled: true
-      #     github_token: ${{ secrets.GITHUB_TOKEN }}