Skip to content

Commit

Permalink
ci: Add a step to upload the sarif file as a workflow artifact.
Browse files Browse the repository at this point in the history
  • Loading branch information
nfelt14 committed Mar 1, 2024
1 parent 4cf6e15 commit 0131035
Showing 1 changed file with 7 additions and 1 deletion.
8 changes: 7 additions & 1 deletion .github/workflows/sbom-scan.yml
Original file line number Diff line number Diff line change
Expand Up @@ -33,7 +33,13 @@ jobs:
sbom: ${{ github.event.repository.name }}-sbom.spdx.json
fail-build: true
severity-cutoff: low
- name: Upload SBOM scan SARIF report
- name: Upload SBOM scan SARIF report as a workflow artifact
uses: actions/upload-artifact@v4
with:
name: sarif_artifact
path: ${{ steps.scan.outputs.sarif }}
if-no-files-found: error
- name: Upload SBOM scan SARIF report to GitHub UI Security tab
if: ${{ github.event_name != 'pull_request' }}
uses: github/codeql-action/upload-sarif@v3
with:
Expand Down

0 comments on commit 0131035

Please sign in to comment.