Always submit sarif file

pgschk · Jan 20, 2024 · d30518f · d30518f
1 parent ca0cb0f
commit d30518f
Showing 1 changed file with 7 additions and 6 deletions.
diff --git a/.github/workflows/trivy-schedule.yml b/.github/workflows/trivy-schedule.yml
@@ -25,11 +25,12 @@ jobs:
           exit-code: '1'
           ignore-unfixed: true
           vuln-type: 'os,library'
-          format: 'table'
-          #output: 'trivy-results.sarif'
+          format: 'sarif'
+          output: 'trivy-results.sarif'
           severity: ${{ env.SEVERITY }}
 
-      # - name: Upload Trivy scan results to GitHub Security tab
-      #   uses: github/codeql-action/upload-sarif@v3
-      #   with:
-      #     sarif_file: 'trivy-results.sarif'
+      - name: Upload Trivy scan results to GitHub Security tab
+        uses: github/codeql-action/upload-sarif@v3
+        if: always()
+        with:
+          sarif_file: 'trivy-results.sarif'