From ae90174125dbc0cf2ec6e83c0b1b4ae7b0b52be1 Mon Sep 17 00:00:00 2001
From: "pleo-file-distributor[bot]"
 <114988919+pleo-file-distributor[bot]@users.noreply.github.com>
Date: Thu, 2 May 2024 11:11:54 +0000
Subject: [PATCH] chore(ci-deps): Update files based on repository
 configuration

---
 .github/workflows/codeql-analysis.yaml | 15 ++++++++++++++-
 1 file changed, 14 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/codeql-analysis.yaml b/.github/workflows/codeql-analysis.yaml
index 7f643c2..d953e0f 100644
--- a/.github/workflows/codeql-analysis.yaml
+++ b/.github/workflows/codeql-analysis.yaml
@@ -30,6 +30,7 @@ env:
   GRADLE_SCRIPT_PATH: ./gradlew
   setWizCliDepsScanPath: .
   setWizCliDepsPolicy: Pleo-Default-vulnerabilities-policy
+  runWizCliDepsScan: false
 
 jobs:
   preflight:
@@ -37,6 +38,7 @@ jobs:
     runs-on: ubuntu-latest
     outputs:
       should_run_analyze: ${{ steps.maybe_skip_analyze.outputs.should_run_analyze }}
+      should_run_wiz_cli: ${{ steps.maybe_skip_wiz_cli.outputs.should_run_wiz_cli }}
       working_language: ${{steps.working_language_step.outputs.WORKING_LANGUAGE}}
     steps:
       - uses: winterjung/split@a211a1c46e35fcdc4097d59dd6282d4a9859651b # v2
@@ -67,12 +69,24 @@ jobs:
             echo "Running CodeQL analysis"
             echo "should_run_analyze=true" >> "$GITHUB_OUTPUT"
           fi
+      - id: maybe_skip_wiz_cli
+        name: Check if Wiz-CLI Deps Scan should run
+        shell: bash
+        run: |
+          if [[ "${{ env.runWizCliDepsScan }}" == "true" ]]; then
+            echo "should_run_wiz_cli=true" >> "$GITHUB_OUTPUT"
+          else
+              echo "should_run_wiz_cli=false" >> "$GITHUB_OUTPUT"
+          fi
       - id: working_language_step
         name: We check if the repository language is supported by CodeQL
         run: echo "WORKING_LANGUAGE=${{env[format('language_{0}', github.event.repository.language)]}}" >> "$GITHUB_OUTPUT"
 
   wiz-cli:
     name: Scan Dependencies with Wiz CLI
+    if: ${{ needs.preflight.outputs.should_run_wiz_cli == 'true'}}
+    needs:
+      - preflight
     runs-on: ubuntu-latest
     defaults:
       run:
@@ -115,7 +129,6 @@ jobs:
     if: ${{ (needs.preflight.outputs.should_run_analyze == 'true') && (needs.preflight.outputs.working_language != '')}}
     needs:
       - preflight
-      - wiz-cli
     runs-on: codeql-runner
     timeout-minutes: 30
     permissions: