Add security-events: write at workflow level to allow CodeQL SARIF upload. Update ZAP action from v0.12.0 to v0.14.0 to fix invalid artifact name error. Target /actuator/health instead of root path which returns 404.
Add security-events: write at workflow level to allow CodeQL SARIF upload. Update ZAP action from v0.12.0 to v0.14.0 to fix invalid artifact name error. Target /actuator/health instead of root path which returns 404.