upload sarif file at once #3020

yurake · Feb 8, 2023 · 55ed6d2 · 55ed6d2
1 parent b1ef2bc
commit 55ed6d2
Showing 1 changed file with 19 additions and 34 deletions.
diff --git a/.github/workflows/docker-image-ci.yml b/.github/workflows/docker-image-ci.yml
@@ -78,10 +78,8 @@ jobs:
         with:
           image: ${{ secrets.DOCKERHUB_USER }}/nginx
           args: --severity-threshold=high --file=kubernetes/nginx/Dockerfile
-      - name: Upload result to GitHub Code Scanning - nginx
-        uses: github/codeql-action/upload-sarif@v2
-        with:
-          sarif_file: snyk.sarif
+      - name: rename sarif file
+        run: mv snyk.sarif nginx.sarif
 
       - name: Build and push - mysql
         uses: docker/build-push-action@v4
@@ -103,10 +101,8 @@ jobs:
         with:
           image: ${{ secrets.DOCKERHUB_USER }}/mysql
           args: --severity-threshold=high --file=kubernetes/mysql/Dockerfile
-      - name: Upload result to GitHub Code Scanning - mysql
-        uses: github/codeql-action/upload-sarif@v2
-        with:
-          sarif_file: snyk.sarif
+      - name: rename sarif file
+        run: mv snyk.sarif mysql.sarif
 
       - name: Build and push - postgres
         uses: docker/build-push-action@v4
@@ -128,10 +124,8 @@ jobs:
         with:
           image: ${{ secrets.DOCKERHUB_USER }}/postgres
           args: --severity-threshold=high --file=kubernetes/postgres/Dockerfile
-      - name: Upload result to GitHub Code Scanning - postgres
-        uses: github/codeql-action/upload-sarif@v2
-        with:
-          sarif_file: snyk.sarif
+      - name: rename sarif file
+        run: mv snyk.sarif postgres.sarif
 
       - name: Build and push - mongodb
         uses: docker/build-push-action@v4
@@ -153,10 +147,8 @@ jobs:
         with:
           image: ${{ secrets.DOCKERHUB_USER }}/mongodb
           args: --severity-threshold=high --file=kubernetes/mongodb/Dockerfile
-      - name: Upload result to GitHub Code Scanning - mongodb
-        uses: github/codeql-action/upload-sarif@v2
-        with:
-          sarif_file: snyk.sarif
+      - name: rename sarif file
+        run: mv snyk.sarif mongodb.sarif
 
       - name: Build and push - cassandra
         uses: docker/build-push-action@v4
@@ -178,10 +170,8 @@ jobs:
         with:
           image: ${{ secrets.DOCKERHUB_USER }}/cassandra
           args: --severity-threshold=high --file=kubernetes/cassandra/Dockerfile
-      - name: Upload result to GitHub Code Scanning - cassandra
-        uses: github/codeql-action/upload-sarif@v2
-        with:
-          sarif_file: snyk.sarif
+      - name: rename sarif file
+        run: mv snyk.sarif cassandra.sarif
 
       - name: Build and push - rabbitmq
         uses: docker/build-push-action@v4
@@ -203,10 +193,8 @@ jobs:
         with:
           image: ${{ secrets.DOCKERHUB_USER }}/rabbitmq
           args: --severity-threshold=high --file=kubernetes/rabbitmq/Dockerfile
-      - name: Upload result to GitHub Code Scanning - rabbitmq
-        uses: github/codeql-action/upload-sarif@v2
-        with:
-          sarif_file: snyk.sarif
+      - name: rename sarif file
+        run: mv snyk.sarif rabbitmq.sarif
 
       - name: Build and push - jenkins
         uses: docker/build-push-action@v4
@@ -228,10 +216,8 @@ jobs:
         with:
           image: ${{ secrets.DOCKERHUB_USER }}/jenkins
           args: --severity-threshold=high --file=kubernetes/monitoring/jenkins/Dockerfile
-      - name: Upload result to GitHub Code Scanning - jenkins
-        uses: github/codeql-action/upload-sarif@v2
-        with:
-          sarif_file: snyk.sarif
+      - name: rename sarif file
+        run: mv snyk.sarif jenkins.sarif
 
       - name: Build and push - ab
         uses: docker/build-push-action@v4
@@ -253,10 +239,8 @@ jobs:
         with:
           image: ${{ secrets.DOCKERHUB_USER }}/ab
           args: --severity-threshold=high --file=kubernetes/monitoring/test/ab/Dockerfile
-      - name: Upload result to GitHub Code Scanning - ab
-        uses: github/codeql-action/upload-sarif@v2
-        with:
-          sarif_file: snyk.sarif
+      - name: rename sarif file
+        run: mv snyk.sarif ab.sarif
 
       - name: Build and push - postmannewman-quarkus
         uses: docker/build-push-action@v4
@@ -278,7 +262,8 @@ jobs:
         with:
           image: ${{ secrets.DOCKERHUB_USER }}/postmannewman-quarkus
           args: --severity-threshold=high --file=kubernetes/monitoring/test/postmannewman/quarkus/Dockerfile
+      - name: rename sarif file
+        run: mv snyk.sarif postmannewman-quarkus.sarif
+
       - name: Upload result to GitHub Code Scanning - postmannewman-quarkus
         uses: github/codeql-action/upload-sarif@v2
-        with:
-          sarif_file: snyk.sarif