Integrate fcli ssc/fod action run github-pr-comment into the SSC/FoD scan actions to optionally allow for adding comments listing new/removed vulnerabilities in a GitHub PR comment. Obviously, this step should only be run if we're scanning the contents of a PR, not when a scan is triggered from a push to a regular branch. Document how this functionality can be used, including any limitations.
Enhancement Request
Integrate
fcli ssc/fod action run github-pr-comment
into the SSC/FoD scan actions to optionally allow for adding comments listing new/removed vulnerabilities in a GitHub PR comment. Obviously, this step should only be run if we're scanning the contents of a PR, not when a scan is triggered from a push to a regular branch. Document how this functionality can be used, including any limitations.