From f1871455ee78767e4c0553656eb67a409367476b Mon Sep 17 00:00:00 2001
From: Michael Niksa <miniksa@microsoft.com>
Date: Tue, 10 Aug 2021 13:02:09 -0700
Subject: [PATCH] throw more things at the wall

---
 build/pipelines/release.yml | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)

diff --git a/build/pipelines/release.yml b/build/pipelines/release.yml
index 470f8b7c9..a81d3ab54 100644
--- a/build/pipelines/release.yml
+++ b/build/pipelines/release.yml
@@ -281,6 +281,26 @@ jobs:
     persistCredentials: True
   - task: PkgESSetupBuild@12
     displayName: 'Package ES - Setup Build'
+
+  - task: NuGetAuthenticate@0
+
+  # 1ES Component Governance onboarding (Detects open source components). See https://docs.opensource.microsoft.com/tools/cg.html
+  - task: ms.vss-governance-buildtask.governance-build-task-component-detection.ComponentGovernanceComponentDetection@0
+    displayName: Component Detection
+    
+  # PREfast. See https://www.1eswiki.com/wiki/SDL_Native_Rules_Build_Task 
+  - task: securedevelopmentteam.vss-secure-development-tools.build-task-prefast.SDLNativeRules@2
+    displayName: 'Run the PREfast SDL Native Rules for MSBuild'
+    condition: succeededOrFailed()
+
+  # Copies output from PREfast SDL Native Rules task to expected location for consumption by PkgESSecComp
+  - task: CopyFiles@1
+    displayName: 'Copy PREfast xml files to SDLNativeRulesDir'
+    inputs:
+      SourceFolder: '$(Agent.BuildDirectory)'
+      Contents: |
+        **\*.nativecodeanalysis.xml
+      TargetFolder: '$(Agent.BuildDirectory)\_sdt\logs\SDLNativeRules'
   - task: DownloadBuildArtifacts@0
     displayName: Download Build Artifacts
     inputs: