diff --git a/apollo-ios-codegen/.circleci/config.yml b/apollo-ios-codegen/.circleci/config.yml
index 95fffb456..a3f578103 100644
--- a/apollo-ios-codegen/.circleci/config.yml
+++ b/apollo-ios-codegen/.circleci/config.yml
@@ -1,7 +1,7 @@
version: 2.1
orbs:
- secops: apollo/circleci-secops-orb@2.0.5
+ secops: apollo/circleci-secops-orb@2.0.6
workflows:
security-scans:
@@ -13,3 +13,8 @@ workflows:
- secops-oidc
git-base-revision: <<#pipeline.git.base_revision>><><>
git-revision: << pipeline.git.revision >>
+ - secops/semgrep:
+ context:
+ - secops-oidc
+ - github-orb
+ git-base-revision: <<#pipeline.git.base_revision>><><>
diff --git a/apollo-ios-pagination/.circleci/config.yml b/apollo-ios-pagination/.circleci/config.yml
index 95fffb456..a3f578103 100644
--- a/apollo-ios-pagination/.circleci/config.yml
+++ b/apollo-ios-pagination/.circleci/config.yml
@@ -1,7 +1,7 @@
version: 2.1
orbs:
- secops: apollo/circleci-secops-orb@2.0.5
+ secops: apollo/circleci-secops-orb@2.0.6
workflows:
security-scans:
@@ -13,3 +13,8 @@ workflows:
- secops-oidc
git-base-revision: <<#pipeline.git.base_revision>><><>
git-revision: << pipeline.git.revision >>
+ - secops/semgrep:
+ context:
+ - secops-oidc
+ - github-orb
+ git-base-revision: <<#pipeline.git.base_revision>><><>
diff --git a/apollo-ios/.circleci/config.yml b/apollo-ios/.circleci/config.yml
index 95fffb456..a3f578103 100644
--- a/apollo-ios/.circleci/config.yml
+++ b/apollo-ios/.circleci/config.yml
@@ -1,7 +1,7 @@
version: 2.1
orbs:
- secops: apollo/circleci-secops-orb@2.0.5
+ secops: apollo/circleci-secops-orb@2.0.6
workflows:
security-scans:
@@ -13,3 +13,8 @@ workflows:
- secops-oidc
git-base-revision: <<#pipeline.git.base_revision>><><>
git-revision: << pipeline.git.revision >>
+ - secops/semgrep:
+ context:
+ - secops-oidc
+ - github-orb
+ git-base-revision: <<#pipeline.git.base_revision>><><>