feat: ast 40209 added validation status to sarif report #427

	name: Security Scans

	on:
	push:
	branches:
	- master
	pull_request:
	branches:
	- master
	merge_group:
	schedule:
	- cron: "0 0 * * *"

	jobs:
	gosec:
	runs-on: ubuntu-latest
	env:
	GO111MODULE: on
	steps:
	- name: Checkout Source
	uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
	- name: Run Gosec Security Scanner
	uses: securego/gosec@26e57d6b340778c2983cd61775bc7e8bb41d002a # v2.19.0
	with:
	args: "-no-fail -fmt sarif -out results.sarif -exclude-dir=.ci -exclude-dir=tests ./..."
	- name: Upload Gosec Results
	uses: github/codeql-action/upload-sarif@4355270be187e1b672a7a1c7c7bae5afdc1ab94a #v3.24.10
	with:
	sarif_file: results.sarif

	secret-scanning:
	runs-on: ubuntu-latest
	steps:
	- name: Checkout Source
	uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
	with:
	fetch-depth: 0
	- name: Run 2ms Scan
	run: docker run -v $(pwd):/repo checkmarx/2ms:latest git /repo --config /repo/.2ms.yml

Provide feedback