From c366f56e76be65017c8e360b563145dff6e2842c Mon Sep 17 00:00:00 2001
From: vikith-jfrog <vikithla@jfrog.com>
Date: Mon, 9 Mar 2026 14:45:12 +0530
Subject: [PATCH 1/4] Create frogbot.yaml

---
 .github/workflows/frogbot.yaml | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)
 create mode 100644 .github/workflows/frogbot.yaml

diff --git a/.github/workflows/frogbot.yaml b/.github/workflows/frogbot.yaml
new file mode 100644
index 0000000000..67b144c104
--- /dev/null
+++ b/.github/workflows/frogbot.yaml
@@ -0,0 +1,17 @@
+name: "Frogbot Scan"
+on:
+  pull_request:
+    types: [opened, synchronize]
+permissions:
+  pull-requests: write
+  contents: write
+  security-events: write
+jobs:
+  frogbot-scan:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: jfrog/frogbot@v2
+        env:
+          JF_URL: ${{ secrets.JF_URL }}
+          JF_ACCESS_TOKEN: ${{ secrets.JF_ACCESS_TOKEN }}
+          JF_GIT_TOKEN: ${{ secrets.GITHUB_TOKEN }}

From 3b7092cf9ee375bc84a5647a7ccb7f9f425bcda1 Mon Sep 17 00:00:00 2001
From: vikith-jfrog <vikithla@jfrog.com>
Date: Mon, 9 Mar 2026 14:57:19 +0530
Subject: [PATCH 2/4] Update frogbot.yaml

---
 .github/workflows/frogbot.yaml | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/.github/workflows/frogbot.yaml b/.github/workflows/frogbot.yaml
index 67b144c104..88148feb9f 100644
--- a/.github/workflows/frogbot.yaml
+++ b/.github/workflows/frogbot.yaml
@@ -5,7 +5,6 @@ on:
 permissions:
   pull-requests: write
   contents: write
-  security-events: write
 jobs:
   frogbot-scan:
     runs-on: ubuntu-latest
@@ -14,4 +13,4 @@ jobs:
         env:
           JF_URL: ${{ secrets.JF_URL }}
           JF_ACCESS_TOKEN: ${{ secrets.JF_ACCESS_TOKEN }}
-          JF_GIT_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          JF_GIT_TOKEN: ${{ secrets.JF_GIT_TOKEN }}

From d382e489028a9735242d1317499d81d0085aa992 Mon Sep 17 00:00:00 2001
From: vikith-jfrog <vikithla@jfrog.com>
Date: Mon, 9 Mar 2026 15:04:24 +0530
Subject: [PATCH 3/4] Update package.json

---
 npm-example/package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/npm-example/package.json b/npm-example/package.json
index fb3158a09c..6846c6d195 100644
--- a/npm-example/package.json
+++ b/npm-example/package.json
@@ -5,9 +5,9 @@
     "start": "node helloworld"
   },
   "dependencies": {
-    "send": "^0.16.2"
+    "send": "0.11.0" 
   },
   "devDependencies": {
-    "debug": "^4.1.1"
+    "debug": "2.0.0"
   }
 }

From 3317cfddd4b1aefb2cf228f096f54a0acf33bdc6 Mon Sep 17 00:00:00 2001
From: vikith-jfrog <vikithla@jfrog.com>
Date: Mon, 9 Mar 2026 15:41:27 +0530
Subject: [PATCH 4/4] Update package.json

---
 npm-example/package.json | 1 +
 1 file changed, 1 insertion(+)

diff --git a/npm-example/package.json b/npm-example/package.json
index 6846c6d195..5994e49d2c 100644
--- a/npm-example/package.json
+++ b/npm-example/package.json
@@ -11,3 +11,4 @@
     "debug": "2.0.0"
   }
 }
+