Skip to content

Commit

Permalink
Merge pull request #16 from cisco-open/scorecard-action-install
Browse files Browse the repository at this point in the history
.github: Add Scorecard workflow
  • Loading branch information
hughwphamill authored May 27, 2024
2 parents 014758b + 9d4c5f9 commit 4755e7c
Showing 1 changed file with 29 additions and 0 deletions.
29 changes: 29 additions & 0 deletions .github/workflows/scorecard.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,29 @@
name: scorecard

on:
push:
branches:
# Run on pushes to default branch
- main
schedule:
# Run weekly on Saturdays
- cron: "30 1 * * 6"
# Run when branch protection rules change
branch_protection_rule:
# Run the workflow manually
workflow_dispatch:

# Declare default permissions as read-only
permissions: read-all

jobs:
run-scorecard:
# Call reusable workflow file
uses: cisco-ospo/.github/.github/workflows/_scorecard.yml@main
permissions:
id-token: write
security-events: write
secrets: inherit
with:
# Publish results of Scorecard analysis
publish-results: true

0 comments on commit 4755e7c

Please sign in to comment.