From ccfd16a44ba3ad2ce78e2c8f5a12770af6c95177 Mon Sep 17 00:00:00 2001
From: "Gabriele A. Ron" <gron@cars.com>
Date: Thu, 18 Apr 2024 15:22:32 -0500
Subject: [PATCH] Added code scanning to Snyk Python

---
 .github/workflows/snyk-python.yaml | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/snyk-python.yaml b/.github/workflows/snyk-python.yaml
index c287b6c..369e376 100644
--- a/.github/workflows/snyk-python.yaml
+++ b/.github/workflows/snyk-python.yaml
@@ -17,4 +17,10 @@ jobs:
       - name: Run Snyk to check for vulnerabilities
         uses: snyk/actions/python@master
         env:
-          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
\ No newline at end of file
+          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+        with:
+          args: --sarif-file-output=snyk.sarif
+            - name: Upload result to GitHub Code Scanning
+              uses: github/codeql-action/upload-sarif@v2
+              with:
+                sarif_file: snyk.sarif
\ No newline at end of file