fix: accept-forks (#49)

* fix: accept-forks

* debug: show generated sarif file

Author: gilescope

.github/workflows/checkmarx.yaml

@@ -35,7 +35,7 @@ jobs:
 
     steps:
       - name: Check access
-        if: ${{ github.event.pull_request.author_association != 'COLLABORATOR' && github.event.pull_request.author_association != 'OWNER' }}
+        if: ${{ github.event.pull_request.author_association != 'COLLABORATOR' && github.event.pull_request.author_association != 'OWNER' && github.event.pull_request.author_association != 'MEMBER' }}
         run: |
           echo "This job needs re-running by someone with collaboration permissions."
           exit 1
@@ -109,6 +109,11 @@ jobs:
           mv ./cx_result.sarif ./cx_result.sarif.orig
           jq '.runs |= map(.results |= map(.locations |= map(if .physicalLocation.artifactLocation.uri == "" then .physicalLocation.artifactLocation.uri = "file:/README.md" else . end)))' cx_result.sarif.orig > cx_result.sarif
 
+      - uses: actions/upload-artifact@v4
+        with:
+          name: cx_result-sarif
+          path: cx_result.sarif
+
       # Upload results to github
       - name: Upload SARIF file
         uses: github/codeql-action/upload-sarif@7273f08caa1dcf2c2837f362f1982de0ab4dc344  # v3.29.2