diff --git a/.bacon.yml b/.bacon.yml
new file mode 100644
index 0000000000..1579edfee9
--- /dev/null
+++ b/.bacon.yml
@@ -0,0 +1,8 @@
+test_suites:
+  - name: semgrep
+    script_path: /root/okta/odyssey/scripts
+    sort_order: "1"
+    timeout: "10"
+    script_name: semgrep
+    criteria: MERGE
+    queue_name: small
diff --git a/scripts/semgrep.sh b/scripts/semgrep.sh
new file mode 100644
index 0000000000..fe655dea84
--- /dev/null
+++ b/scripts/semgrep.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+
+source ${OKTA_HOME}/${REPO}/scripts/setup.sh
+
+cd ${OKTA_HOME}/${REPO}
+
+if ! sast_scan;
+then
+  exit ${FAILURE}
+fi
+
+exit ${SUCCESS}