From 55bce13146f8607dd6603ef382525ad722391ca3 Mon Sep 17 00:00:00 2001
From: Ganesh Somasundaram <ganesh.somasundaram@okta.com>
Date: Tue, 8 Aug 2023 15:11:30 -0400
Subject: [PATCH] feat: adds semgrep static scan to the repo

---
 .bacon.yml         |  8 ++++++++
 scripts/semgrep.sh | 12 ++++++++++++
 2 files changed, 20 insertions(+)
 create mode 100644 .bacon.yml
 create mode 100644 scripts/semgrep.sh

diff --git a/.bacon.yml b/.bacon.yml
new file mode 100644
index 0000000000..1579edfee9
--- /dev/null
+++ b/.bacon.yml
@@ -0,0 +1,8 @@
+test_suites:
+  - name: semgrep
+    script_path: /root/okta/odyssey/scripts
+    sort_order: "1"
+    timeout: "10"
+    script_name: semgrep
+    criteria: MERGE
+    queue_name: small
diff --git a/scripts/semgrep.sh b/scripts/semgrep.sh
new file mode 100644
index 0000000000..fe655dea84
--- /dev/null
+++ b/scripts/semgrep.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+
+source ${OKTA_HOME}/${REPO}/scripts/setup.sh
+
+cd ${OKTA_HOME}/${REPO}
+
+if ! sast_scan;
+then
+  exit ${FAILURE}
+fi
+
+exit ${SUCCESS}