From f5fb6f2d7673a556966796b05b5f3e3d56f131ae Mon Sep 17 00:00:00 2001
From: Wayne Grant <wayne.grant@snyk.io>
Date: Mon, 27 May 2024 15:57:54 +0100
Subject: [PATCH] feat: add prodsec/security_scans

---
 .circleci/config.yml | 27 ++++++++++++++++++++++++++-
 1 file changed, 26 insertions(+), 1 deletion(-)

diff --git a/.circleci/config.yml b/.circleci/config.yml
index b3a7343..69cafb8 100644
--- a/.circleci/config.yml
+++ b/.circleci/config.yml
@@ -1,7 +1,7 @@
 version: 2.1
 
 orbs:
-  prodsec: snyk/prodsec-orb@1.0
+  prodsec: snyk/prodsec-orb@1
 
 params: &params
   parameters:
@@ -32,6 +32,21 @@ test_matrix: &test_matrix
         - '1.5.5'
         - '1.7.0'
 jobs:
+  security-scans:
+    resource_class: small
+    docker:
+      - image: circleci/node:lts
+    steps:
+      - checkout
+      - run:
+          name: Install dependencies
+          command: npm install
+      - prodsec/security_scans:
+          mode: auto
+          release-branch: master
+          open-source-additional-arguments: --exclude=test
+          iac-scan: disabled
+
   test:
     <<: *params
     docker:
@@ -84,6 +99,16 @@ workflows:
           context:
             - snyk-bot-slack
           channel: os-team-managed-alerts
+          filters:
+            branches:
+              ignore:
+                - master
+
+      - security-scans:
+          name: Security Scans
+          context:
+            - open_source-managed
+            - nodejs-install
 
       - test:
           name: Test node=<<matrix.node_version>> jdk=<<matrix.jdk_version>> sbt=<<matrix.sbt_version>>