From 428a0f582269dd5d64bcb56b4b2036755ded20a2 Mon Sep 17 00:00:00 2001
From: Asok Shanmugam <asokumarshanmugam@Asok-Maci.local>
Date: Wed, 22 Apr 2026 08:36:23 -0700
Subject: [PATCH] Add runCognium.sh script for OWASP Benchmark scoring

Adds a script to scan BenchmarkJava with Cognium and produce a SARIF
result file compatible with the BenchmarkUtils Cognium reader.

Install: npm install -g cognium

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
---
 scripts/runCognium.sh | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100755 scripts/runCognium.sh

diff --git a/scripts/runCognium.sh b/scripts/runCognium.sh
new file mode 100755
index 0000000000..49939b2878
--- /dev/null
+++ b/scripts/runCognium.sh
@@ -0,0 +1,14 @@
+#!/usr/bin/env bash
+
+# Install: npm install -g cognium
+# Check for install/updates at https://github.com/cogniumhq/cognium
+
+source scripts/requireCommand.sh
+
+requireCommand cognium
+
+benchmark_version=$(scripts/getBenchmarkVersion.sh)
+cognium_version=$(cognium --version | grep -oE '[0-9]+\.[0-9]+\.[0-9]+')
+result_file="results/Benchmark_$benchmark_version-cognium-v$cognium_version.sarif"
+
+cognium scan src/main/java --format sarif --category security --output "$result_file"