From 3f563e971e2ce13b5e7d9a134ce944fe18ba2dd5 Mon Sep 17 00:00:00 2001
From: Union Palenshus <palenshus@users.noreply.github.com>
Date: Fri, 30 Jul 2021 12:27:10 -0700
Subject: [PATCH 1/3] Set up CI with Azure Pipelines

[skip ci]
---
 azure-pipelines.yml | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)
 create mode 100644 azure-pipelines.yml

diff --git a/azure-pipelines.yml b/azure-pipelines.yml
new file mode 100644
index 00000000..640d693e
--- /dev/null
+++ b/azure-pipelines.yml
@@ -0,0 +1,21 @@
+trigger:
+- none
+
+pool:
+  vmImage: 'windows-latest'
+
+steps:
+- task: Semmle@1
+  inputs:
+    sourceCodeDirectory: '$(Build.SourcesDirectory)/src'
+    language: 'csharp'
+    querySuite: 'Recommended'
+    timeout: '1800'
+    addProjectDirToScanningExclusionList: true
+  continueOnError: true
+
+- task: CredScan@2
+  inputs:
+    scanFolder: '$(Build.SourcesDirectory)'
+    debugMode: false
+  continueOnError: true

From 0b494e76223acb6b55be7f2db8e87dab67dc4ddf Mon Sep 17 00:00:00 2001
From: Union Palenshus <palenshus@gmail.com>
Date: Tue, 3 Aug 2021 14:30:42 -0700
Subject: [PATCH 2/3] Adding Binskim

---
 .../azure-pipelines.sec.yml                       | 15 ++++++++++-----
 1 file changed, 10 insertions(+), 5 deletions(-)
 rename azure-pipelines.yml => pipelines/azure-pipelines.sec.yml (56%)

diff --git a/azure-pipelines.yml b/pipelines/azure-pipelines.sec.yml
similarity index 56%
rename from azure-pipelines.yml
rename to pipelines/azure-pipelines.sec.yml
index 640d693e..96e2b923 100644
--- a/azure-pipelines.yml
+++ b/pipelines/azure-pipelines.sec.yml
@@ -5,17 +5,22 @@ pool:
   vmImage: 'windows-latest'
 
 steps:
+
+- task: CredScan@2
+  inputs:
+    scanFolder: '$(Build.SourcesDirectory)'
+    debugMode: false
+  continueOnError: true
+  
 - task: Semmle@1
   inputs:
-    sourceCodeDirectory: '$(Build.SourcesDirectory)/src'
+    sourceCodeDirectory: '$(Build.SourcesDirectory)/src/WingetCreateCLI'
     language: 'csharp'
     querySuite: 'Recommended'
     timeout: '1800'
     addProjectDirToScanningExclusionList: true
   continueOnError: true
 
-- task: CredScan@2
+- task: BinSkim@3
   inputs:
-    scanFolder: '$(Build.SourcesDirectory)'
-    debugMode: false
-  continueOnError: true
+    arguments: 'analyze "$(system.defaultWorkingDirectory)\src\WingetCreate*.dll" "$(system.defaultWorkingDirectory)\src\WingetCreate*.exe" --config default --recurse' 

From 0c3707a1ee6f808ea00e38f92516b7119ae34adc Mon Sep 17 00:00:00 2001
From: Union Palenshus <palenshus@gmail.com>
Date: Tue, 3 Aug 2021 15:23:27 -0700
Subject: [PATCH 3/3] Main branch trigger

---
 pipelines/azure-pipelines.sec.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pipelines/azure-pipelines.sec.yml b/pipelines/azure-pipelines.sec.yml
index 96e2b923..aefaf2a7 100644
--- a/pipelines/azure-pipelines.sec.yml
+++ b/pipelines/azure-pipelines.sec.yml
@@ -1,5 +1,5 @@
 trigger:
-- none
+  - main
 
 pool:
   vmImage: 'windows-latest'