From 74c189455504d952965e69bff57f5f94406439e1 Mon Sep 17 00:00:00 2001
From: Jocelyn Castellano <admin@malwarefight.wip.la>
Date: Sat, 2 Dec 2023 15:03:54 -0800
Subject: [PATCH 1/3] Validate Gradle wrapper

---
 .github/workflows/gradle.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/gradle.yml b/.github/workflows/gradle.yml
index a5b025f..e0e7763 100644
--- a/.github/workflows/gradle.yml
+++ b/.github/workflows/gradle.yml
@@ -37,6 +37,9 @@ jobs:
       
     - name: Enable verbose logging of dependencies
       run: echo "org.gradle.dependency.verification.console=verbose" >> $GITHUB_WORKSPACE/gradle.properties
+
+    - name: Validate Gradle wrapper
+      uses: gradle/wrapper-validation-action@v1
       
     - name: Build with Gradle
       run: ./gradlew build --no-daemon

From 29c03834c76d86863a764f9d50e5668a86013a25 Mon Sep 17 00:00:00 2001
From: Jocelyn Castellano <admin@malwarefight.wip.la>
Date: Sat, 2 Dec 2023 15:05:35 -0800
Subject: [PATCH 2/3] Move it before the first gradle action

---
 .github/workflows/gradle.yml | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/gradle.yml b/.github/workflows/gradle.yml
index e0e7763..bd0ff30 100644
--- a/.github/workflows/gradle.yml
+++ b/.github/workflows/gradle.yml
@@ -27,19 +27,21 @@ jobs:
       with:
         java-version: '8'
         distribution: 'corretto'
+
     - name: Add the release signing secret key
       if: github.ref_name == 'main'
       run: echo -n "$GPG_SIGNING_KEY" | gpg --import
       env:
         GPG_SIGNING_KEY: ${{ secrets.GPG_SIGNING_KEY }}
+
+    - name: Validate Gradle wrapper
+      uses: gradle/wrapper-validation-action@v1
+
     - name: Setup gradle build
       uses: gradle/gradle-build-action@6778644d759ada84c71d6abc2f6fd7e328c600ab
       
     - name: Enable verbose logging of dependencies
       run: echo "org.gradle.dependency.verification.console=verbose" >> $GITHUB_WORKSPACE/gradle.properties
-
-    - name: Validate Gradle wrapper
-      uses: gradle/wrapper-validation-action@v1
       
     - name: Build with Gradle
       run: ./gradlew build --no-daemon

From 9d96f27eed663a377c680a220ab7a0614a11c6cf Mon Sep 17 00:00:00 2001
From: Jocelyn Castellano <admin@malwarefight.wip.la>
Date: Sat, 2 Dec 2023 19:35:42 -0800
Subject: [PATCH 3/3] Add gradle wrapper validation for CodeQL

---
 .github/workflows/codeql.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index a252f70..e039ffc 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -61,6 +61,10 @@ jobs:
     
     - name: Enable verbose logging of dependencies
       run: echo "org.gradle.dependency.verification.console=verbose" >> $GITHUB_WORKSPACE/gradle.properties
+      
+    - name: Validate Gradle wrapper
+      uses: gradle/wrapper-validation-action@v1
+      
     - name: Build with Gradle
       run: ./gradlew build --no-daemon