From 6728d55744f679280f36226d977fbbb818bcfbdc Mon Sep 17 00:00:00 2001
From: "Francesa Alfaro, Agustin" <agustin.francesa.alfaro@intel.com>
Date: Wed, 18 Jun 2025 09:52:18 -0600
Subject: [PATCH] ci: fix bandit scan

Signed-off-by: Francesa Alfaro, Agustin <agustin.francesa.alfaro@intel.com>
---
 .github/workflows/bandit.yml | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/bandit.yml b/.github/workflows/bandit.yml
index d447d30..c45b9cc 100644
--- a/.github/workflows/bandit.yml
+++ b/.github/workflows/bandit.yml
@@ -37,6 +37,8 @@ jobs:
       uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       with:
         token: ${{ secrets.RELEASE_TOKEN }}
+        persist-credentials: false
+        
 
     - name: Run Bandit - Generate SARIF report and check for HIGH severity issues
       id: high_severity_check
@@ -53,7 +55,7 @@ jobs:
           echo "No HIGH severity issues found!"
         fi
 
-    - name: Upload SARIF to GitHub Security tab
+    - name: Upload SARIF to GitHub CodeQL
       uses: github/codeql-action/upload-sarif@ce28f5bb42b7a9f2c824e633a3f6ee835bab6858 # v3.29.0
       with:
         sarif_file: results.sarif