From 9cf59b2e2b85881779c6799b25b76fa4b6dd05d9 Mon Sep 17 00:00:00 2001
From: vrenaville <vincent.renaville@camptocamp.com>
Date: Thu, 19 Sep 2024 11:47:56 +0200
Subject: [PATCH] fixup! fixup! feat: switch to github + bump library + bump
 python libraries + sysdig image validation

---
 .github/workflows/build.yaml | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
index a491ae7f..af646289 100644
--- a/.github/workflows/build.yaml
+++ b/.github/workflows/build.yaml
@@ -73,10 +73,18 @@ jobs:
         uses: sysdiglabs/scan-action@v5
         with:
             sysdig-secure-url: https://eu1.app.sysdig.com
+            stop-on-failed-policy-eval: true
             stop-on-processing-error: true
             image-tag: ci-latest:0.1
+            skip-upload: false
             sysdig-secure-token: ${{ secrets.SYSDIG_SECURE_TOKEN }}
 
+      - name: Upload SARIF file
+        if: success() || failure() 
+        uses: github/codeql-action/upload-sarif@v3
+        with:
+          sarif_file: ${{ github.workspace }}/sarif.json
+
       - name: Login to GitHub Container Registry
         if: github.event_name == 'push' || github.event_name == 'schedule'
         uses: docker/login-action@v2