From 625ce52721373f9d11a6ec2f1a667dae21f0acf7 Mon Sep 17 00:00:00 2001
From: Fei Chen <fei.chen@okta.com>
Date: Mon, 18 Aug 2025 15:50:19 -0700
Subject: [PATCH] add snyk scan

---
 .circleci/config.yml | 39 +++++++++++++++++++++++++++++++++++++++
 1 file changed, 39 insertions(+)
 create mode 100644 .circleci/config.yml

diff --git a/.circleci/config.yml b/.circleci/config.yml
new file mode 100644
index 0000000..5fde674
--- /dev/null
+++ b/.circleci/config.yml
@@ -0,0 +1,39 @@
+version: 2.1
+
+orbs:
+  general-platform-helpers: okta/general-platform-helpers@1.9.4
+  android: circleci/android@3.1.0
+  path-filtering: circleci/path-filtering@2.0.2
+
+jobs:
+  snyk-scan:
+    executor:
+      name: android/android_docker
+      tag: 2025.04.1
+    environment:
+      GRADLE_OPTS: '
+      -Dorg.gradle.jvmargs="-Xmx3g -XX:+HeapDumpOnOutOfMemoryError"
+      -Dorg.gradle.daemon=false
+      -Dorg.gradle.workers.max=3
+      -Dkotlin.incremental=false'
+    steps:
+      - attach_workspace:
+          at: ~/project
+      - checkout
+      - general-platform-helpers/step-load-dependencies
+      - general-platform-helpers/step-run-snyk-monitor:
+          scan-all-projects: true
+          skip-unresolved: false
+          run-on-non-main: true
+          additional-arguments: "--configuration-matching=implementation"
+
+workflows:
+  security-scan:
+    jobs:
+      - snyk-scan:
+          context:
+            - static-analysis
+          filters:
+            branches:
+              only:
+                - master