From cba77e67e9435e43d2118afbe7e23ebbd540b667 Mon Sep 17 00:00:00 2001
From: jkan2 <5862123+jkan2@users.noreply.github.com>
Date: Mon, 23 Sep 2024 15:53:14 -0700
Subject: [PATCH 1/3] add semgrep to actions

---
 .github/workflows/semgrep.yml | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)
 create mode 100644 .github/workflows/semgrep.yml

diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
new file mode 100644
index 0000000000..b9989af844
--- /dev/null
+++ b/.github/workflows/semgrep.yml
@@ -0,0 +1,25 @@
+name: Semgrep
+on:
+  workflow_dispatch: {}
+  pull_request: {}
+  push:
+    branches:
+      - main
+      - master
+    paths:
+      - .github/workflows/semgrep.yml
+  schedule:
+    # random HH:MM to avoid a load spike on GitHub Actions at 00:00
+    - cron: '56 22 * * *'
+jobs:
+  semgrep:
+    name: semgrep/ci
+    runs-on: ubuntu-20.04
+    env:
+      SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}
+    container:
+      image: semgrep/semgrep
+    if: (github.actor != 'dependabot[bot]')
+    steps:
+      - uses: actions/checkout@v4
+      - run: semgrep ci
\ No newline at end of file

From a18238d9c3edeb42cd6e8e437de3b37cbf1874cd Mon Sep 17 00:00:00 2001
From: jkan2 <5862123+jkan2@users.noreply.github.com>
Date: Tue, 24 Sep 2024 09:54:25 -0700
Subject: [PATCH 2/3] update branch naming to develop

---
 .github/workflows/semgrep.yml | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
index b9989af844..0b2f067ae7 100644
--- a/.github/workflows/semgrep.yml
+++ b/.github/workflows/semgrep.yml
@@ -4,8 +4,7 @@ on:
   pull_request: {}
   push:
     branches:
-      - main
-      - master
+      - develop
     paths:
       - .github/workflows/semgrep.yml
   schedule:
@@ -22,4 +21,4 @@ jobs:
     if: (github.actor != 'dependabot[bot]')
     steps:
       - uses: actions/checkout@v4
-      - run: semgrep ci
\ No newline at end of file
+      - run: semgrep ci

From 0fb41cc718e80f16b26a4811abc85a5a55f48b05 Mon Sep 17 00:00:00 2001
From: jkan2 <5862123+jkan2@users.noreply.github.com>
Date: Tue, 24 Sep 2024 14:06:54 -0700
Subject: [PATCH 3/3] remove path per comment

---
 .github/workflows/semgrep.yml | 2 --
 1 file changed, 2 deletions(-)

diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
index 0b2f067ae7..f76ee3d14b 100644
--- a/.github/workflows/semgrep.yml
+++ b/.github/workflows/semgrep.yml
@@ -5,8 +5,6 @@ on:
   push:
     branches:
       - develop
-    paths:
-      - .github/workflows/semgrep.yml
   schedule:
     # random HH:MM to avoid a load spike on GitHub Actions at 00:00
     - cron: '56 22 * * *'