urllib3
1name: "Scorecard"
2on:
3branch_protection_rule:
4schedule:
5- cron: "0 0 * * 0"
6push:
7branches: ["main", "1.26.x"]
8
9permissions: read-all
10
11jobs:
12analysis:
13if: github.repository_owner == 'urllib3'
14name: "Scorecard"
15runs-on: "ubuntu-latest"
16permissions:
17security-events: write
18id-token: write
19contents: read
20actions: read
21
22steps:
23- name: "Checkout repository"
24uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
25with:
26persist-credentials: false
27
28- name: "Run Scorecard"
29uses: ossf/scorecard-action@62b2cac7ed8198b15735ed49ab1e5cf35480ba46 # v2.4.0
30with:
31results_file: results.sarif
32results_format: sarif
33repo_token: ${{ secrets.SCORECARD_TOKEN }}
34publish_results: true
35