From 6718b7763b8e474742e47e066260c26b20cfecb4 Mon Sep 17 00:00:00 2001
From: Jared Perreault <90656038+jaredperreault-okta@users.noreply.github.com>
Date: Tue, 29 Aug 2023 11:54:04 -0400
Subject: [PATCH] chore: enables scan tooling in CI (#158)

OKTA-636330 chore: enables scan tooling
---
 .bacon.yml         | 17 ++++++++++++++++-
 scripts/semgrep.sh | 12 ++++++++++++
 scripts/synk.sh    |  9 +++++++++
 3 files changed, 37 insertions(+), 1 deletion(-)
 create mode 100644 scripts/semgrep.sh
 create mode 100644 scripts/synk.sh

diff --git a/.bacon.yml b/.bacon.yml
index 226f829..52e311a 100644
--- a/.bacon.yml
+++ b/.bacon.yml
@@ -4,12 +4,27 @@ test_suites:
       sort_order: '1'
       timeout: '10'
       script_name: e2e
-      criteria: MERGE
+      criteria: OPTIONAL
       queue_name: small
     - name: e2e-oie
       script_path: /root/okta/samples-js-vue/scripts
       sort_order: '1'
       timeout: '10'
       script_name: e2e-oie
+      criteria: OPTIONAL
+      queue_name: small
+    - name: semgrep
+      script_path: /root/okta/samples-js-vue/scripts
+      sort_order: '3'
+      timeout: '10'
+      script_name: semgrep
       criteria: MERGE
       queue_name: small
+    - name: synk
+      script_path: /root/okta/samples-js-vue/scripts
+      script_name: synk
+      sort_order: '3'
+      timeout: '200'
+      criteria: MAINLINE
+      queue_name: small
+      trigger: AUTO
\ No newline at end of file
diff --git a/scripts/semgrep.sh b/scripts/semgrep.sh
new file mode 100644
index 0000000..646c99e
--- /dev/null
+++ b/scripts/semgrep.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+
+set -eo pipefail
+
+cd ${OKTA_HOME}/${REPO}
+
+if ! sast_scan;
+then
+  exit ${FAILURE}
+fi
+
+exit ${SUCCESS}
\ No newline at end of file
diff --git a/scripts/synk.sh b/scripts/synk.sh
new file mode 100644
index 0000000..c266838
--- /dev/null
+++ b/scripts/synk.sh
@@ -0,0 +1,9 @@
+#!/bin/bash -x
+
+source ${OKTA_HOME}/${REPO}/scripts/setup.sh
+
+cd ${OKTA_HOME}/${REPO}
+
+create_log_group "Synk Scan"
+dependency_scan
+finish_log_group $?