From 0131035c27aa5c16c8b8cca70020ee6988329233 Mon Sep 17 00:00:00 2001
From: Nicholas Felt <nicholas.felt@tektronix.com>
Date: Fri, 1 Mar 2024 10:19:09 -0800
Subject: [PATCH] ci: Add a step to upload the sarif file as a workflow
 artifact.

---
 .github/workflows/sbom-scan.yml | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/sbom-scan.yml b/.github/workflows/sbom-scan.yml
index a903d37b..31950e25 100644
--- a/.github/workflows/sbom-scan.yml
+++ b/.github/workflows/sbom-scan.yml
@@ -33,7 +33,13 @@ jobs:
           sbom: ${{ github.event.repository.name }}-sbom.spdx.json
           fail-build: true
           severity-cutoff: low
-      - name: Upload SBOM scan SARIF report
+      - name: Upload SBOM scan SARIF report as a workflow artifact
+        uses: actions/upload-artifact@v4
+        with:
+          name: sarif_artifact
+          path: ${{ steps.scan.outputs.sarif }}
+          if-no-files-found: error
+      - name: Upload SBOM scan SARIF report to GitHub UI Security tab
         if: ${{ github.event_name != 'pull_request' }}
         uses: github/codeql-action/upload-sarif@v3
         with: