workflows: enable sarif output for CIFuzz (#7630)

* workflows: enable sarif output for CIFuzz

This will make it easier to interpret the output of CIFuzz by making it
possible to view the result in the Github security page.

Signed-off-by: David Korczynski <[email protected]>

* workflows: cifuzz: add sarif category

Signed-off-by: David Korczynski <[email protected]>

---------

Signed-off-by: David Korczynski <[email protected]>

Author: DavidKorczynski

.github/workflows/pr-fuzz.yaml

@@ -24,9 +24,18 @@ jobs:
         fuzz-seconds: 600
         dry-run: false
         language: c
+        output-sarif: true
     - name: Upload Crash
       uses: actions/upload-artifact@v3
       if: failure() && steps.build.outcome == 'success'
       with:
         name: artifacts
         path: ./out/artifacts
+    - name: Upload Sarif
+      if: always() && steps.build.outcome == 'success'
+      uses: github/codeql-action/upload-sarif@v2
+      with:
+        # Path to SARIF file relative to the root of the repository
+        sarif_file: cifuzz-sarif/results.sarif
+        checkout_path: cifuzz-sarif
+        category: CIFuzz