From 9ab3922a3723ec81950d1b158d5c26d7eb040062 Mon Sep 17 00:00:00 2001
From: will Farrell <willfarrell@users.noreply.github.com>
Date: Sat, 18 Apr 2026 13:01:01 -0600
Subject: [PATCH 1/2] feat: add 'License headers' job to test-sast.yml

---
 .github/workflows/test-sast.yml | 22 +++++++++++++++++++++-
 1 file changed, 21 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/test-sast.yml b/.github/workflows/test-sast.yml
index 5d0a669..c72dc3a 100644
--- a/.github/workflows/test-sast.yml
+++ b/.github/workflows/test-sast.yml
@@ -57,7 +57,27 @@ jobs:
           exit-code: 0
           format: table
 
-  lockfile:
+license:
+    name: "License headers"
+    runs-on: ubuntu-latest
+    if: (github.actor != 'dependabot[bot]')
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+        with:
+          persist-credentials: false
+      - name: Setup Node.js ${{ env.NODE_VERSION }}
+        uses: actions/setup-node@6044e13b5dc448c55e2357c09f80417699197238 # v6.2.0
+        with:
+          node-version: ${{ env.NODE_VERSION }}
+          registry-url: https://registry.npmjs.org
+          cache: npm
+      - name: Install dependencies
+        run: |
+          npm ci --ignore-scripts
+      - name: License check
+        run: |
+          npm run test:sast:license  lockfile:
     name: "lockfile-lint: SAST package-lock.json"
     runs-on: ubuntu-latest
     if: (github.actor != 'dependabot[bot]')

From c0f1f8bdac89f148ecadd14dfc6687439d5d30f4 Mon Sep 17 00:00:00 2001
From: will Farrell <willfarrell@users.noreply.github.com>
Date: Sat, 18 Apr 2026 13:02:53 -0600
Subject: [PATCH 2/2] feat: add 'License headers' job to test-sast.yml

---
 .github/workflows/test-sast.yml | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/test-sast.yml b/.github/workflows/test-sast.yml
index c72dc3a..fc12422 100644
--- a/.github/workflows/test-sast.yml
+++ b/.github/workflows/test-sast.yml
@@ -57,7 +57,7 @@ jobs:
           exit-code: 0
           format: table
 
-license:
+  license:
     name: "License headers"
     runs-on: ubuntu-latest
     if: (github.actor != 'dependabot[bot]')
@@ -77,7 +77,9 @@ license:
           npm ci --ignore-scripts
       - name: License check
         run: |
-          npm run test:sast:license  lockfile:
+          npm run test:sast:license
+
+  lockfile:
     name: "lockfile-lint: SAST package-lock.json"
     runs-on: ubuntu-latest
     if: (github.actor != 'dependabot[bot]')