From 7e729bf4dd4100293d3cc327d248f01071a0920f Mon Sep 17 00:00:00 2001
From: Steven <s-8@outlook.com>
Date: Tue, 7 Oct 2025 18:53:39 +0200
Subject: [PATCH] fix: snyk-docker-vulnerability-scan sarif

See https://github.com/github/codeql-action/issues/2187#issuecomment-2043220400
---
 .github/workflows/snyk-docker-vulnerability-scan.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/snyk-docker-vulnerability-scan.yml b/.github/workflows/snyk-docker-vulnerability-scan.yml
index 4578ba6..6a32490 100644
--- a/.github/workflows/snyk-docker-vulnerability-scan.yml
+++ b/.github/workflows/snyk-docker-vulnerability-scan.yml
@@ -32,6 +32,8 @@ jobs:
         args: --file=Dockerfile
     - name: Output sarif file
       run: cat snyk.sarif
+    - name: fix security-severity "null" to "0" for valid sarif format
+      run: sed -i 's/"security-severity": "null"/"security-severity": "0"/g' snyk.sarif
     - name: Upload result to GitHub Code Scanning
       uses: github/codeql-action/upload-sarif@v4
       with: