From 2aab70fa9a218dbbb66aaf58f5bddcd30633b923 Mon Sep 17 00:00:00 2001
From: JFrog <support@jfrog.com>
Date: Sat, 1 Nov 2025 23:01:04 +0000
Subject: [PATCH] Integrate JFrog Frogbot workflow for
 crazy-vulnerable-nodejs-application

---
 .github/workflows/frogbot.yml | 30 ++++++++++++++++++++++++++++++
 1 file changed, 30 insertions(+)
 create mode 100644 .github/workflows/frogbot.yml

diff --git a/.github/workflows/frogbot.yml b/.github/workflows/frogbot.yml
new file mode 100644
index 0000000..d5a8185
--- /dev/null
+++ b/.github/workflows/frogbot.yml
@@ -0,0 +1,30 @@
+name: "Frogbot Security Scan"
+
+on:
+  pull_request_target: 
+    types: [opened, synchronize]
+  push:
+    branches:
+      - master
+  schedule:
+    - cron: "0 0 * * *"
+  workflow_dispatch:
+
+permissions:
+  pull-requests: write
+  contents: write
+  security-events: write
+
+jobs:
+  frogbot-scan:
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        branch: ["master"]
+    steps:
+      - uses: jfrog/frogbot@v2
+        env:
+          JF_URL: ${{ secrets.JF_URL }}
+          JF_ACCESS_TOKEN: ${{ secrets.JF_ACCESS_TOKEN }}
+          JF_GIT_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          JF_GIT_BASE_BRANCH: ${{ matrix.branch }}