Static scanning action #4

	name: "42Crunch API Security Audit"

	on:
	workflow_dispatch:
	pull_request:
	branches:
	- '1.0.0-wip'
	jobs:
	run_42c_audit:
	permissions:
	contents: read # for actions/checkout to fetch code
	security-events: write # for results upload to Github Code Scanning
	runs-on: ubuntu-latest
	steps:
	- name: Checkout repo
	uses: actions/checkout@v4
	- name: Audit API definition for security issues
	uses: 42Crunch/api-security-audit-action-freemium@v1
	with:
	# Upload results to Github Code Scanning
	upload-to-code-scanning: false
	log-level: debug
	# sarif-report: 42Crunch_AuditReport_${{ github.run_id }}.SARIF
	- name: save-audit-report
	if: ${{ ! always() }}
	uses: actions/upload-artifact@v4
	with:
	name: 42Crunch_AuditReport_${{ github.run_id }}
	path: 42Crunch_AuditReport_${{ github.run_id }}.SARIF
	if-no-files-found: error

Provide feedback