Put Secure supply chain analysis at correct place (#17273)

TravisEz13 · adityapatwardhan · web-flow · commit a33b5d32b0e9 · 2022-05-06T11:54:04.000-07:00
* Update releaseBuild.yml

* Add nuget security analysis to where it should be

* Add a display name

* Update tools/releaseBuild/azureDevOps/releaseBuild.yml

Co-authored-by: Aditya Patwardhan &lt;adityap@microsoft.com&gt;

Co-authored-by: Aditya Patwardhan &lt;adityap@microsoft.com&gt;
diff --git a/tools/releaseBuild/azureDevOps/releaseBuild.yml b/tools/releaseBuild/azureDevOps/releaseBuild.yml
@@ -34,6 +34,9 @@ variables:
     value: 1
   - name: NugetSecurityAnalysisWarningLevel
     value: none
+  # Prevents auto-injection of nuget-security-analysis@0
+  - name: skipNugetSecurityAnalysis
+    value: true
   - name: branchCounterKey
     value: $[format('{0:yyyyMMdd}-{1}', pipeline.startTime,variables['Build.SourceBranch'])]
   - name: branchCounter
diff --git a/tools/releaseBuild/azureDevOps/templates/insert-nuget-config-azfeed.yml b/tools/releaseBuild/azureDevOps/templates/insert-nuget-config-azfeed.yml
@@ -23,3 +23,7 @@ steps:
       }
   displayName: 'Add nuget.config for Azure DevOps feed for packages'
   condition: and(succeededOrFailed(), ne(variables['PSInternalNugetFeed'], ''))
+
+- task: nuget-security-analysis@0
+  displayName: 'Run Secure Supply Chain analysis'
+

Original file line number	Diff line number	Diff line change
`@@ -23,3 +23,7 @@ steps:`
`23`	`23`	`}`
`24`	`24`	`displayName: 'Add nuget.config for Azure DevOps feed for packages'`
`25`	`25`	`condition: and(succeededOrFailed(), ne(variables['PSInternalNugetFeed'], ''))`
	`26`	`+`
	`27`	`+- task: nuget-security-analysis@0`
	`28`	`+ displayName: 'Run Secure Supply Chain analysis'`
	`29`	`+`