In this demo, we can see how we can use GitHub Actions to scan a .NET project for vulnerabilities and report them in the Security tab of the repository.
We will report the vulnerabilities using the SARIF format, which is a standard format for the output of static analysis tools. The the result will be displayed in the Security tab of the repository.
We also will see how to report a security vulnerability to summary actions