From cbd763d971704731e53dd922c2801ae25fc3015b Mon Sep 17 00:00:00 2001
From: Aravind Kumar <aravind.kumar@contentstack.com>
Date: Fri, 17 May 2024 21:23:15 +0530
Subject: [PATCH 1/9] sca-scan.yml

---
 .github/workflows/sca-scan.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/sca-scan.yml b/.github/workflows/sca-scan.yml
index bf9c1eb..f09161f 100644
--- a/.github/workflows/sca-scan.yml
+++ b/.github/workflows/sca-scan.yml
@@ -3,7 +3,7 @@ on:
   pull_request:
     types: [opened, synchronize, reopened]
 jobs:
-  security:
+  security-sca:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@master

From a65454398bfa544be1af2f1b319205ad83fc5ba6 Mon Sep 17 00:00:00 2001
From: Aravind Kumar <aravind.kumar@contentstack.com>
Date: Fri, 17 May 2024 21:23:27 +0530
Subject: [PATCH 2/9] jira.yml

---
 .github/workflows/jira.yml | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/jira.yml b/.github/workflows/jira.yml
index c4f9d9f..caa4bbd 100644
--- a/.github/workflows/jira.yml
+++ b/.github/workflows/jira.yml
@@ -3,11 +3,11 @@ on:
   pull_request:
     types: [opened]
 jobs:
-  security:
+  security-jira:
     if: ${{ github.actor == 'dependabot[bot]' || github.actor == 'snyk-bot' || contains(github.event.pull_request.head.ref, 'snyk-fix-')  || contains(github.event.pull_request.head.ref, 'snyk-upgrade-')}}
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3.5.3
+      - uses: actions/checkout@v2
       - name: Login into JIRA
         uses: atlassian/gajira-login@master
         env:
@@ -26,3 +26,8 @@ jobs:
             PR: ${{ github.event.pull_request.html_url }}
 
           fields: "${{ secrets.JIRA_FIELDS }}"
+      - name: Transition issue
+        uses: atlassian/gajira-transition@v3
+        with:
+          issue: ${{ steps.create.outputs.issue }}
+          transition: ${{ secrets.JIRA_TRANSITION }}

From 2868bdf350dec88411d3b838bde464bcffdb9306 Mon Sep 17 00:00:00 2001
From: Aravind Kumar <aravind.kumar@contentstack.com>
Date: Fri, 17 May 2024 21:23:27 +0530
Subject: [PATCH 3/9] sast-scan.yml

---
 .github/workflows/sast-scan.yml | 11 +++++++++++
 1 file changed, 11 insertions(+)
 create mode 100644 .github/workflows/sast-scan.yml

diff --git a/.github/workflows/sast-scan.yml b/.github/workflows/sast-scan.yml
new file mode 100644
index 0000000..3b9521a
--- /dev/null
+++ b/.github/workflows/sast-scan.yml
@@ -0,0 +1,11 @@
+name: SAST Scan
+on:
+  pull_request:
+    types: [opened, synchronize, reopened]
+jobs:
+  security-sast:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v2
+      - name: Semgrep Scan
+        run: docker run -v /var/run/docker.sock:/var/run/docker.sock -v "${PWD}:/src" returntocorp/semgrep semgrep scan --config auto
\ No newline at end of file

From 368af3c95b16ddefc6d7ae52a39a70c230e890f1 Mon Sep 17 00:00:00 2001
From: Aravind Kumar <aravind.kumar@contentstack.com>
Date: Fri, 17 May 2024 21:23:29 +0530
Subject: [PATCH 4/9] codeql-analysis.yml


From 8d43a677607140a91c7cbdc323c4b34359ef6ce3 Mon Sep 17 00:00:00 2001
From: Aravind Kumar <aravind.kumar@contentstack.com>
Date: Mon, 20 Jan 2025 12:37:56 +0530
Subject: [PATCH 5/9] sca-scan.yml


From 3a0bca4ff03d425852bc9637d3e6e49c676d1c38 Mon Sep 17 00:00:00 2001
From: Aravind Kumar <aravind.kumar@contentstack.com>
Date: Mon, 20 Jan 2025 12:38:08 +0530
Subject: [PATCH 6/9] jira.yml

---
 .github/workflows/jira.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/jira.yml b/.github/workflows/jira.yml
index caa4bbd..250abc7 100644
--- a/.github/workflows/jira.yml
+++ b/.github/workflows/jira.yml
@@ -21,7 +21,7 @@ jobs:
           project: ${{ secrets.JIRA_PROJECT }}
           issuetype: ${{ secrets.JIRA_ISSUE_TYPE }}
           summary: |
-            ${{ github.event.pull_request.title }}
+            Snyk | Vulnerability | ${{ github.event.repository.name }} | ${{ github.event.pull_request.title }}
           description: |
             PR: ${{ github.event.pull_request.html_url }}
 

From d4a994b654cf41dadf25df24fa28410a0a2222d4 Mon Sep 17 00:00:00 2001
From: Aravind Kumar <aravind.kumar@contentstack.com>
Date: Mon, 20 Jan 2025 12:38:09 +0530
Subject: [PATCH 7/9] sast-scan.yml


From 220467d874ef89cdb110ec0bdd0c3171e7a093ec Mon Sep 17 00:00:00 2001
From: Aravind Kumar <aravind.kumar@contentstack.com>
Date: Mon, 20 Jan 2025 12:38:10 +0530
Subject: [PATCH 8/9] codeql-analysis.yml


From d26f22ebfd5210a1203e9a21d3acce691d4c95fc Mon Sep 17 00:00:00 2001
From: Aravind Kumar <aravind.kumar@contentstack.com>
Date: Mon, 20 Jan 2025 12:38:14 +0530
Subject: [PATCH 9/9] Updated codeowners

---
 CODEOWNERS | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/CODEOWNERS b/CODEOWNERS
index 0773923..1be7e0d 100644
--- a/CODEOWNERS
+++ b/CODEOWNERS
@@ -1 +1 @@
-* @contentstack/security-admin
\ No newline at end of file
+* @contentstack/security-admin