From 24a6fc7bc4698d68b0b44f71cf1aafcaa628f6e0 Mon Sep 17 00:00:00 2001
From: Wayne Grant <117590766+wayne-grant@users.noreply.github.com>
Date: Mon, 18 Mar 2024 14:21:19 +0000
Subject: [PATCH] chore: add quality gates (#123)

---
 .circleci/config.yml | 36 +++++++++++++++++++++++++++++++-----
 1 file changed, 31 insertions(+), 5 deletions(-)

diff --git a/.circleci/config.yml b/.circleci/config.yml
index 960af07..2ee3c30 100644
--- a/.circleci/config.yml
+++ b/.circleci/config.yml
@@ -1,12 +1,28 @@
 version: 2.1
 
 orbs:
-  prodsec: snyk/prodsec-orb@1.0
+  prodsec: snyk/prodsec-orb@1.1
+
+defaults: &defaults
+  resource_class: small
+  docker:
+    - image: cimg/node:14.19
 
 jobs:
+  security-scans:
+    <<: *defaults
+    steps:
+      - checkout
+      - run:
+          name: Install
+          command: npm install
+      - prodsec/security_scans:
+          mode: auto
+          iac-scan: disabled
+          release-branch: master
+
   test:
-    docker:
-      - image: cimg/node:14.19
+    <<: *defaults
     working_directory: ~/work
     steps:
       - checkout
@@ -19,9 +35,9 @@ jobs:
       - run:
           name: Test
           command: npm test
+
   release:
-    docker:
-      - image: cimg/node:14.19
+    <<: *defaults
     working_directory: ~/work
     steps:
       - checkout
@@ -45,8 +61,18 @@ workflows:
             branches:
               ignore:
                 - master
+
+      - security-scans:
+          name: Security Scans
+          context:
+            - team-analysis-arch
+
       - test:
           name: Test
+          requires:
+            - Scan repository for secrets
+            - Security Scans
+
       - release:
           name: Release
           requires: