From 563ebb632c92d34ae7dce097bb55323f9ac7a9cf Mon Sep 17 00:00:00 2001
From: Guillaume Falourd <guillaume.falourd@zup.com.br>
Date: Tue, 29 Nov 2022 09:25:17 -0300
Subject: [PATCH] add sast pipeline

Signed-off-by: Guillaume Falourd <guillaume.falourd@zup.com.br>
---
 .github/workflows/sast.yml | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)
 create mode 100644 .github/workflows/sast.yml

diff --git a/.github/workflows/sast.yml b/.github/workflows/sast.yml
new file mode 100644
index 0000000..d89eca4
--- /dev/null
+++ b/.github/workflows/sast.yml
@@ -0,0 +1,17 @@
+name: SAST - Static application security testing
+
+on:
+  workflow_call:
+  workflow_dispatch:
+  push: # Until added to release pipeline
+
+jobs:
+  appsec-workflow:
+    uses: ZupIT/appsec-workflow/.github/workflows/appsec-workflow.yml@v1.3
+    with:
+      debug: false
+      repository: ${{github.event.repository.name}}
+      organization: ${{github.repository_owner}}
+      environment: main
+    secrets:
+      report-secret: ${{ secrets.VULN_MNG_REPORT_KEY }}
\ No newline at end of file