From efb0706d2497076b333671ce1778e9dc6177add3 Mon Sep 17 00:00:00 2001
From: estrajnik <estrajnik@paypal.com>
Date: Wed, 29 Jan 2025 11:21:04 +0200
Subject: [PATCH] GHAS integration: Code scanning & Dependency review workflow
 files

---
 .github/workflows/security.code-scanning.yml     | 12 ++++++++++++
 .github/workflows/security.dependency-review.yml | 10 ++++++++++
 2 files changed, 22 insertions(+)
 create mode 100644 .github/workflows/security.code-scanning.yml
 create mode 100644 .github/workflows/security.dependency-review.yml

diff --git a/.github/workflows/security.code-scanning.yml b/.github/workflows/security.code-scanning.yml
new file mode 100644
index 0000000..3bf856b
--- /dev/null
+++ b/.github/workflows/security.code-scanning.yml
@@ -0,0 +1,12 @@
+name: CodeQL
+
+on:
+  pull_request:
+    branches: [ main ]
+  push:
+    branches: [ main ]
+  workflow_dispatch:
+
+jobs:
+  codeql-javascript:
+    uses: chargehound/security-workflows-public/.github/workflows/codeql-javascript.yml@main
\ No newline at end of file
diff --git a/.github/workflows/security.dependency-review.yml b/.github/workflows/security.dependency-review.yml
new file mode 100644
index 0000000..05e828e
--- /dev/null
+++ b/.github/workflows/security.dependency-review.yml
@@ -0,0 +1,10 @@
+name: Dependency Review
+
+on:
+  pull_request:
+    branches: [ main ]
+  workflow_dispatch:
+
+jobs:
+  dependency-review:
+    uses: chargehound/security-workflows-public/.github/workflows/dependency-review.yml@main
\ No newline at end of file