From f6338292f9d584fdc8a802a75f90fbf5670d1d43 Mon Sep 17 00:00:00 2001
From: Ahmed Musaad <111054715+amusaad@users.noreply.github.com>
Date: Fri, 3 Nov 2023 13:25:28 +0100
Subject: [PATCH] feat: Enable nightly code scans using ScanCLI. (#229)

---
 .github/workflows/ecs-nightly-scans.yml | 31 +++++++++++++++++++++++++
 1 file changed, 31 insertions(+)
 create mode 100644 .github/workflows/ecs-nightly-scans.yml

diff --git a/.github/workflows/ecs-nightly-scans.yml b/.github/workflows/ecs-nightly-scans.yml
new file mode 100644
index 0000000..ed45f80
--- /dev/null
+++ b/.github/workflows/ecs-nightly-scans.yml
@@ -0,0 +1,31 @@
+name: ECS - SAST OSS Nightly Scanss
+
+on:
+  schedule:
+    - cron: "0 0 * * *"
+
+  workflow_dispatch:
+
+jobs:
+  Scans:
+    runs-on: SynopsysManagedRunner
+    
+    permissions:
+      id-token: write
+      contents: read
+      
+    steps:
+      - uses: actions/checkout@v2
+      - run: pip3 install pygithub
+      
+      - name: SAST-OSS-Scans
+        uses: iZettle/ScanCLI/action@main
+        with:
+          POLARIS_ACCESS_TOKEN: ${{ secrets.POLARIS_ACCESS_TOKEN }}
+          BLACKDUCK_ACCESS_TOKEN: ${{ secrets.BLACKDUCK_ACCESS_TOKEN }}
+          BOT_GITHUB_TOKEN: ${{ secrets.BOT_GITHUB_TOKEN }}
+          ZETTLE_SHARED_SERVICES_ECR_OIDC_ROLE_ARN: ${{ vars.ZETTLE_SHARED_SERVICES_ECR_OIDC_ROLE_ARN }}
+          ARTIFACTORY_USER: ${{ secrets.ARTIFACTORY_USER }}
+          ARTIFACTORY_API_KEY: ${{ secrets.ARTIFACTORY_API_KEY }}
+          APPNAME: ${{ github.repository }}
+