From 15f05faf99ae29e3606c57ce697a29b0a73ca80d Mon Sep 17 00:00:00 2001
From: Alan Gonzalez <agonzalez@plume.com>
Date: Wed, 30 Mar 2022 17:39:38 -0400
Subject: [PATCH] SEC-1742: Plume Infosec - Secret Scanning

Issue: Enable secret detection on pull requests to default branch
Signed-off-by: Alan Gonzalez <agonzalez@plume.com>
---
 .github/workflows/repo-compliance-scan.yml | 13 +++++++++++++
 1 file changed, 13 insertions(+)
 create mode 100644 .github/workflows/repo-compliance-scan.yml

diff --git a/.github/workflows/repo-compliance-scan.yml b/.github/workflows/repo-compliance-scan.yml
new file mode 100644
index 0000000..698a112
--- /dev/null
+++ b/.github/workflows/repo-compliance-scan.yml
@@ -0,0 +1,13 @@
+name: Infosec Compliance
+
+on:
+  workflow_dispatch:
+  pull_request:
+    branches: [ master ]
+
+jobs:
+  scan:
+    name: Code scan
+    uses: plume-design-inc/infosec-appsec/.github/workflows/compliance-scan.yml@main
+    secrets:
+      SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}