change to use sarif with codeql

krixapolinario · krixapolinario · commit 23110ea06d21 · 2024-11-06T10:25:44.000-03:00
diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml
@@ -1,25 +1,14 @@
-name: build
+name: Security Analysis
 
 on:
   push:
     branches:
       - main
   pull_request:
+    branches:
+      - main
 
-jobs:
-  Bearer:
-    runs-on: ubuntu-latest
-    steps:
-      - name: Checkout source code
-        uses: actions/checkout@v4
-      - name: Run Report
-        id: report
-        uses: bearer/bearer-action@v2
-      # - name: upload Bearer scan SARIF report
-      #   uses: github/codeql-action/upload-sarif@v3
-      #   with:
-      #     sarif_file: ${{ steps.report.outputs.sarif }}
-        
+jobs:   
   Anchore:
     runs-on: ubuntu-latest
     steps:
@@ -31,8 +20,17 @@ jobs:
         with:
           path: "."
           # fail-build: false
-          output-format: table
-      # - name: upload Anchore scan SARIF report
-      #   uses: github/codeql-action/upload-sarif@v3
-      #   with:
-      #     sarif_file: ${{ steps.scan.outputs.sarif }}
+          # output-format: table
+      - name: upload Anchore scan SARIF report
+        uses: github/codeql-action/upload-sarif@v3
+        with:
+          sarif_file: ${{ steps.scan.outputs.sarif }}
+  
+  Bearer:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout source code
+        uses: actions/checkout@v4
+      - name: Run Report
+        id: report
+        uses: bearer/bearer-action@v2
