Explicitly run CG Detection on release jobs only (#3373)

.azure-pipelines-templates/cg.yml

@@ -0,0 +1,7 @@
+steps:
+  - task: ComponentGovernanceComponentDetection@0
+    inputs:
+      ignoreDirectories: "tests,samples"
+      scanType: "Register"
+      verbosity: "Verbose"
+      alertWarningLevel: "High"

.azure-pipelines-templates/common.yml

@@ -42,6 +42,7 @@ jobs:
           - template: metrics.yml
 
       - ${{ if and(eq(parameters.suffix, 'Release'), eq(parameters.target, 'SGX')) }}:
+          - template: cg.yml
           - template: publish_tls_report.yml
           - template: publish_compatibility_report.yml
           - template: install.yml

.cg.yml

@@ -1,33 +0,0 @@
-trigger:
-  batch: true
-  branches:
-    include:
-      - main
-      - "refs/tags/ccf-*"
-
-schedules:
-  - cron: "0 3 * * Mon-Fri"
-    displayName: Daily Component Governance Check
-    branches:
-      include:
-        - main
-        - "release/*"
-    always: true
-
-jobs:
-  - job: ComponentGovernance
-    displayName: "Component Governance"
-    pool:
-      vmImage: ubuntu-20.04
-
-    steps:
-      - checkout: self
-        clean: true
-        fetchDepth: 1
-
-      - task: ComponentGovernanceComponentDetection@0
-        inputs:
-          ignoreDirectories: "tests,samples"
-          scanType: "Register"
-          verbosity: "Verbose"
-          alertWarningLevel: "High"