[devops] Add Policheck tool to our pipeline and update CredScan to latest version

mk/xamarin.mk

@@ -7,7 +7,7 @@ MONO_BRANCH    := $(shell cd $(MONO_PATH) 2> /dev/null && git symbolic-ref --sho
 endif
 
 ifdef ENABLE_XAMARIN
-NEEDED_MACCORE_VERSION := 4bfce648475f8db1d93b8a9f51a69ad0b8b55930
+NEEDED_MACCORE_VERSION := d2ef9d7ee008e1a07a29396c68df33cc4f02de18
 NEEDED_MACCORE_BRANCH := master
 
 MACCORE_DIRECTORY := maccore

tools/devops/azure-pipelines.yml

@@ -82,13 +82,21 @@ jobs:
       git clone -b $branch $repo $SYSTEM_DEFAULTWORKINGDIRECTORY/../maccore
     displayName: "Setting up maccore..."
 
-  - task: securedevelopmentteam.vss-secure-development-tools.build-task-credscan.CredScan@2
+  - task: CredScan@3
     displayName: "Run CredScan"
     inputs:
-      suppressionsFile: "$(System.DefaultWorkingDirectory)/../maccore/tools/devops/CredScanSuppressions.json"
-      debugMode: false
+      suppressionsFile: '$(System.DefaultWorkingDirectory)/../maccore/tools/devops/CredScanSuppressions.json'
+
+  - task: PoliCheck@1
+    inputs:
+      inputType: 'Basic'
+      targetType: 'F'
+      targetArgument: '$(Build.SourcesDirectory)'
+      result: 'PoliCheck.xml'
+      optionsUEPATH: '$(System.DefaultWorkingDirectory)/../maccore/tools/devops/PoliCheckExclusions.xml'
 
   - task: securedevelopmentteam.vss-secure-development-tools.build-task-postanalysis.PostAnalysis@1
     displayName: 'Post Analysis'
     inputs:
       CredScan: true
+      PoliCheck: true