fix(cd*): Added explicit sha for upload trivy results

2 files changed, 3 insertions, 1 deletions

diff --git a/.github/workflows/cd-dev.yml b/.github/workflows/cd-dev.yml
index 0ed1bb8..8bf5471 100644
--- a/.github/workflows/cd-dev.yml
+++ b/.github/workflows/cd-dev.yml
@@ -47,3 +47,4 @@ jobs:
         uses: github/codeql-action/upload-sarif@v2
         with:
           sarif_file: 'trivy-results.sarif'
+          sha: ${{ github.sha }}
diff --git a/.github/workflows/cd.yml b/.github/workflows/cd.yml
index 2ed8a43..e95f2e6 100644
--- a/.github/workflows/cd.yml
+++ b/.github/workflows/cd.yml
@@ -23,7 +23,7 @@ jobs:
           tags: ${{ secrets.DOCKERHUB_USERNAME }}/pico-web-server:latest
 
   Test-Trivy:
-    name: Scan development docker container with trivy
+    name: Scan production docker container with trivy
     runs-on: ubuntu-latest
     needs: Build-docker-and-push
     steps:
@@ -40,6 +40,7 @@ jobs:
         uses: github/codeql-action/upload-sarif@v2
         with:
           sarif_file: 'trivy-results.sarif'
+          sha: ${{ github.sha }}
 
   Release:
     name: Make github release