From d6acfbb61a81db7ff8bf2d86e8a77916962cab11 Mon Sep 17 00:00:00 2001
From: John Andersen <john.s.andersen@intel.com>
Date: Sat, 22 Jun 2024 10:36:11 -0600
Subject: [PATCH] ci: scorecard: Upload SARIF to SARIF specific endpoint

---
 .github/workflows/scorecard.yml | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
index 67c2b6b69c..0d51d4d924 100644
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@@ -40,3 +40,11 @@ jobs:
           name: SARIF file
           path: results.sarif
           retention-days: 5
+      - name: Upload SARIF file
+        uses: github/codeql-action/upload-sarif@v3
+        with:
+          # Path to SARIF file relative to the root of the repository
+          sarif_file: results.sarif
+          # Optional category for the results
+          # Used to differentiate multiple results for one commit
+          category: ossf-scorecard