From f0aac68584afa12e56347e3825c5179f2082d312 Mon Sep 17 00:00:00 2001 From: Iliyan Velichkov Date: Fri, 30 May 2025 13:55:25 +0300 Subject: [PATCH 1/2] add test PR --- .github/workflows/security-report.yaml | 27 ++++++++++++++++++++++++++ 1 file changed, 27 insertions(+) create mode 100644 .github/workflows/security-report.yaml diff --git a/.github/workflows/security-report.yaml b/.github/workflows/security-report.yaml new file mode 100644 index 000000000..2af02ce9f --- /dev/null +++ b/.github/workflows/security-report.yaml @@ -0,0 +1,27 @@ +name: Test security reports + +on: + push: + branches: + - main + pull_request: + branches: + - main + +jobs: + sast-codeql-analyze: + runs-on: ubuntu-latest + steps: + - name: Generate Security Report + uses: rsdmike/github-security-report-action@v3.0.4 + with: + template: summary + token: ${{ secrets.GITHUB_TOKEN }} + # sarifReportDir: "sast_codeql_report" + outputDir: "security-reports" + + - name: Upload Generated CodeQL Analysis Security Report as Artifact + uses: actions/upload-artifact@v4 + with: + name: security_report + path: security-reports From 6aedf16981454d6bbdb9f0da4552878256d1e9a5 Mon Sep 17 00:00:00 2001 From: Iliyan Velichkov Date: Fri, 30 May 2025 14:11:52 +0300 Subject: [PATCH 2/2] fix --- .github/workflows/security-report.yaml | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/.github/workflows/security-report.yaml b/.github/workflows/security-report.yaml index 2af02ce9f..7efe914ed 100644 --- a/.github/workflows/security-report.yaml +++ b/.github/workflows/security-report.yaml @@ -12,12 +12,15 @@ jobs: sast-codeql-analyze: runs-on: ubuntu-latest steps: + - name: Create release files + run: mkdir reports + - name: Generate Security Report uses: rsdmike/github-security-report-action@v3.0.4 with: template: summary token: ${{ secrets.GITHUB_TOKEN }} - # sarifReportDir: "sast_codeql_report" + sarifReportDir: "reports" outputDir: "security-reports" - name: Upload Generated CodeQL Analysis Security Report as Artifact