Put Secure supply chain analysis at correct place (#17273)

* Update releaseBuild.yml * Add nuget security analysis to where it should be * Add a display name * Update tools/releaseBuild/azureDevOps/releaseBuild.yml Co-authored-by: Aditya Patwardhan <adityap@microsoft.com> Co-authored-by: Aditya Patwardhan <adityap@microsoft.com>
PowerShell · May 6, 2022 · a33b5d3 · a33b5d3
1 parent 3bff8c0
commit a33b5d3
Show file tree

Hide file tree

Showing 2 changed files with 7 additions and 0 deletions.
diff --git a/tools/releaseBuild/azureDevOps/releaseBuild.yml b/tools/releaseBuild/azureDevOps/releaseBuild.yml
@@ -34,6 +34,9 @@ variables:
     value: 1
   - name: NugetSecurityAnalysisWarningLevel
     value: none
+  # Prevents auto-injection of nuget-security-analysis@0
+  - name: skipNugetSecurityAnalysis
+    value: true
   - name: branchCounterKey
     value: $[format('{0:yyyyMMdd}-{1}', pipeline.startTime,variables['Build.SourceBranch'])]
   - name: branchCounter

diff --git a/tools/releaseBuild/azureDevOps/templates/insert-nuget-config-azfeed.yml b/tools/releaseBuild/azureDevOps/templates/insert-nuget-config-azfeed.yml
@@ -23,3 +23,7 @@ steps:
       }
   displayName: 'Add nuget.config for Azure DevOps feed for packages'
   condition: and(succeededOrFailed(), ne(variables['PSInternalNugetFeed'], ''))
+
+- task: nuget-security-analysis@0
+  displayName: 'Run Secure Supply Chain analysis'
+