feat(ci): Update Action

Author: GeekMasher

.github/workflows/self-action.yml

@@ -0,0 +1,21 @@
+name: "CodeQL Bicep Extractor"
+
+on:
+  push:
+    branches: [ main ]
+  pull_request:
+    branches: [ main ]
+  workflow_dispatch:
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - name: "Checkout"
+        uses: actions/checkout@v4
+
+      - name: "CodeQL Bicep Extractor"
+        uses: ./ 
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
+

action.yml

@@ -11,16 +11,22 @@ inputs:
       The GitHub token used to make authenticated API requests.
     default: ${{ github.token }}
     required: false
+outputs:
+  sarif-results:
+    description: >
+      The path to the SARIF results file generated by the extractor.
+    value: ${{ steps.extractor.outputs.sarif_results }}
 
 runs:
   using: 'composite'
   steps:
     - name: "CodeQL Extractor Action"
       uses: advanced-security/[email protected]
+      id: extractor
       with:
         token: ${{ inputs.token }}
         extractors: "GitHubSecurityLab/[email protected]"
         packs: GitHubSecurityLab/bicep-queries
         languages: "bicep"
         # Assumes GH is installed
-        attestation: true
+        # attestation: true