From 60fea550c0426cf149415df0b2fc2f0eff449f5f Mon Sep 17 00:00:00 2001
From: Eduardo Boronat <eduardo.boronat@okta.com>
Date: Wed, 23 Jul 2025 10:46:36 +0000
Subject: [PATCH] chore(ci): Remove Semgrep GHA Workflow

---
 .github/workflows/semgrep.yml | 40 -----------------------------------
 1 file changed, 40 deletions(-)
 delete mode 100644 .github/workflows/semgrep.yml

diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
deleted file mode 100644
index b0411b04..00000000
--- a/.github/workflows/semgrep.yml
+++ /dev/null
@@ -1,40 +0,0 @@
-name: Semgrep
-
-on:
-  merge_group:
-  pull_request:
-    types:
-      - opened
-      - synchronize
-  push:
-    branches:
-      - master
-  schedule:
-    - cron: "30 0 1,15 * *"
-
-permissions:
-  contents: read
-
-concurrency:
-  group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
-  cancel-in-progress: ${{ github.ref != 'refs/heads/master' }}
-
-jobs:
-  run:
-    name: Check for Vulnerabilities
-    runs-on: ubuntu-latest
-
-    container:
-      image: returntocorp/semgrep
-
-    steps:
-      - if: github.actor == 'dependabot[bot]' || github.event_name == 'merge_group'
-        run: exit 0 # Skip unnecessary test runs for dependabot and merge queues. Artifically flag as successful, as this is a required check for branch protection.
-
-      - uses: actions/checkout@v4
-        with:
-          ref: ${{ github.event.pull_request.head.sha || github.ref }}
-
-      - run: semgrep ci
-        env:
-          SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}