Version updated for https://github.com/AvixoSec/sarix to version v0.4.0. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Sarix is a security-focused CLI tool designed to enhance code scanning workflows by verifying and contextualizing alerts generated by tools like Semgrep and CodeQL. Its primary functionality includes importing SARIF reports, analyzing source code to validate alerts, reducing noise, and providing evidence-backed verdicts on potential vulnerabilities. By automating the verification process and offering structured insights into security issues, Sarix streamlines code review, reduces false positives, and improves the accuracy and clarity of CI reports.