Upload bandit results to security tab

Author: AmberJBlue

.github/workflows/security-scan.yaml

@@ -98,6 +98,14 @@ jobs:
           targets: "."
           exclude: "tests"
 
+      - name: Upload SARIF results to GitHub Security tab
+        if: github.ref == 'refs/heads/main'
+        uses: github/codeql-action/upload-sarif@86b04fb0e47484f7282357688f21d5d0e32175fe
+        with:
+          sarif_file: results.sarif
+          category: bandit-security-scan
+        continue-on-error: true
+
       - name: Upload SARIF as artifact
         uses: actions/upload-artifact@v4
         with: