[Bug]: github/codeql-action/upload-sarif@v3 enforces distinct runs with distinct tools, breaking the CI #1915
Description
Is there an existing issue for this?
- I have searched the existing issues
Is there a StackOverflow question about this issue?
- I have searched StackOverflow
What happened?
This was long overdue, but they finally enforced it: https://github.blog/changelog/2025-07-21-code-scanning-will-stop-combining-multiple-sarif-runs-uploaded-in-the-same-sarif-file/
And you can see the first build failures here: https://github.com/android/nowinandroid/actions/runs/16457569114/job/46518103634?pr=1913
I've proposed a fix here:
Relevant logcat output
Error: Code Scanning could not process the submitted SARIF file:
A delivery cannot contain multiple runs with the same category. Please upload a single run per category. For more information, see https://github.blog/changelog/2025-07-21-code-scanning-will-stop-combining-multiple-sarif-runs-uploaded-in-the-same-sarif-file/Code of Conduct
- I agree to follow this project's Code of Conduct