From 394048a5836bce7e9a01f1ba327eddb73c15a5cb Mon Sep 17 00:00:00 2001
From: Stanislav Trailov <stanislav.trailov@bosch.io>
Date: Mon, 11 May 2026 10:50:19 +0300
Subject: [PATCH]  Allow input ref parameter in order to see a branch in the
 reports (#3060)

Signed-off-by: strailov <Stanislav.Trailov@bosch.io>
---
 .../reusable_workflow_trivy-scan.yaml          | 18 ++++++++++++------
 1 file changed, 12 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/reusable_workflow_trivy-scan.yaml b/.github/workflows/reusable_workflow_trivy-scan.yaml
index 4ff7128d7..173842f14 100644
--- a/.github/workflows/reusable_workflow_trivy-scan.yaml
+++ b/.github/workflows/reusable_workflow_trivy-scan.yaml
@@ -116,36 +116,42 @@ jobs:
         uses: github/codeql-action/upload-sarif@v4.35.1
         with:
           sarif_file: 'scans/hawkbit-ddi-server.sarif'
-          category: "Container Images (hawkbit-ddi-server)"
+          category: "Container Images (hawkbit-ddi-server) [${{ inputs.ref }}]"
+          ref: refs/heads/${{ inputs.ref }}
       - name: Upload Docker image scan results to GitHub Security tab hawkbit-dmf-server
         if: ${{ inputs.upload }}
         uses: github/codeql-action/upload-sarif@v4.35.1
         with:
           sarif_file: 'scans/hawkbit-dmf-server.sarif'
-          category: "Container Images (hawkbit-dmf-server)"
+          category: "Container Images (hawkbit-dmf-server) [${{ inputs.ref }}]"
+          ref: refs/heads/${{ inputs.ref }}
       - name: Upload Docker image scan results to GitHub Security tab hawkbit-mgmt-server
         if: ${{ inputs.upload }}
         uses: github/codeql-action/upload-sarif@v4.35.1
         with:
           sarif_file: 'scans/hawkbit-mgmt-server.sarif'
-          category: "Container Images (hawkbit-mgmt-server)"
+          category: "Container Images (hawkbit-mgmt-server) [${{ inputs.ref }}]"
+          ref: refs/heads/${{ inputs.ref }}
       - name: Upload Docker image scan results to GitHub Security tab hawkbit-ui
         if: ${{ inputs.upload }}
         uses: github/codeql-action/upload-sarif@v4.35.1
         with:
           sarif_file: 'scans/hawkbit-ui.sarif'
-          category: "Container Images (hawkbit-ui)"
+          category: "Container Images (hawkbit-ui) [${{ inputs.ref }}]"
+          ref: refs/heads/${{ inputs.ref }}
 
       - name: Upload Docker image scan results to GitHub Security tab hawkbit-update-server
         if: ${{ inputs.upload }}
         uses: github/codeql-action/upload-sarif@v4.35.1
         with:
           sarif_file: 'scans/hawkbit-update-server.sarif'
-          category: "Container Images (hawkbit-update-server)"
+          category: "Container Images (hawkbit-update-server) [${{ inputs.ref }}]"
+          ref: refs/heads/${{ inputs.ref }}
 
       - name: Upload Docker image scan results to GitHub Security tab hawkbit-repository-jpa-init
         if: ${{ inputs.upload }}
         uses: github/codeql-action/upload-sarif@v4.35.1
         with:
           sarif_file: 'scans/hawkbit-repository-jpa-init.sarif'
-          category: "Container Images (hawkbit-repository-jpa-init)"
\ No newline at end of file
+          category: "Container Images (hawkbit-repository-jpa-init) [${{ inputs.ref }}]"
+          ref: refs/heads/${{ inputs.ref }}
\ No newline at end of file