From 9fc187bb67bec2837df429fd3c26cefbf3452978 Mon Sep 17 00:00:00 2001
From: Aga Dufrat <aga.dufrat@digital.cabinet-office.gov.uk>
Date: Tue, 7 May 2024 14:34:24 +0100
Subject: [PATCH] Continue to upload SARIF on Brakeman errors

By default Brakeman returns a non-zero exit code if any security warnings are found or scanning errors are encountered.
This ensures the scan output (SARIF file) gets uploaded to GitHub Code scanning.
---
 .github/workflows/brakeman.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/brakeman.yml b/.github/workflows/brakeman.yml
index e021ee1a4..40da9e799 100644
--- a/.github/workflows/brakeman.yml
+++ b/.github/workflows/brakeman.yml
@@ -21,6 +21,7 @@ jobs:
           bundler-cache: true
 
       - name: Run Brakeman
+        continue-on-error: true
         run: bundle exec brakeman . --except CheckRenderInline --quiet -f sarif >> brakeman.sarif
 
       - name: Upload result to Github Code Scanning