mongodb
diff --git a/‎.github/workflows/generate-sarif.yml
Lines changed: 0 additions & 40 deletions b/‎.github/workflows/generate-sarif.yml
Lines changed: 0 additions & 40 deletions
diff --git a/‎.github/workflows/release.yml
Lines changed: 16 additions & 0 deletions b/‎.github/workflows/release.yml
Lines changed: 16 additions & 0 deletions
@@ -36,3 +36,19 @@ jobs:
       - run: npm publish --provenance
         env:
           NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
+
+  generate_sarif_report:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - name: actions/setup
+        uses: ./.github/actions/setup
+
+      - name: "Generate Sarif Report"
+        uses: "alcaeus/drivers-github-tools/code-scanning-export@export-code-scanning-report"
+        with:
+          ref: main
+
+      - name: 'Print (TODO - upload to s3 instead)'
+        shell: bash
+        run: cat code-scanning-alerts.json