From dd7848a8922717d5c81e29718cbd1cdafb8db268 Mon Sep 17 00:00:00 2001
From: Enrico Stahn <enrico.stahn@gmail.com>
Date: Wed, 16 Feb 2022 22:04:28 +0100
Subject: [PATCH] chore: send scan report to GitHub UI

---
 .github/workflows/test.yml | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index 73d2f5f..6362ca1 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -78,6 +78,13 @@ jobs:
 
     - name: Scan image
       uses: anchore/scan-action@v3.2.0
+      id: scan
       with:
         image: "hipages/php-fpm_exporter:latest"
         fail-build: true
+        acs-report-enable: true
+
+    - name: Upload Anchore scan SARIF report
+      uses: github/codeql-action/upload-sarif@v1
+      with:
+        sarif_file: ${{ steps.scan.outputs.sarif }}