Skip to content

Commit

Permalink
fix: use default GITHUB_TOKEN for ossf/scorecard-action (#2416)
Browse files Browse the repository at this point in the history
## Description

Zarf's branch protection was switched to rulesets instead of classic
branch protection (temporarily in evaluate mode). A PAT is no longer
needed. See:
https://github.com/ossf/scorecard-action#authentication-with-fine-grained-pat-optional

## Type of change

- [x] Bug fix (non-breaking change which fixes an issue)
- [ ] New feature (non-breaking change which adds functionality)
- [ ] Other (security config, docs update, etc)

## Checklist before merging

- [ ] Test, docs, adr added or updated as needed
- [ ] [Contributor Guide
Steps](https://github.com/defenseunicorns/zarf/blob/main/CONTRIBUTING.md#developer-workflow)
followed

Co-authored-by: razzle <harry@razzle.cloud>
  • Loading branch information
bburky and Noxsios authored Apr 5, 2024
1 parent 2c704c5 commit 7cf34a5
Showing 1 changed file with 0 additions and 1 deletion.
1 change: 0 additions & 1 deletion .github/workflows/scorecard.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -31,7 +31,6 @@ jobs:
with:
results_file: results.sarif
results_format: sarif
repo_token: ${{ secrets.SCORECARD_READ_TOKEN }}
publish_results: true

# Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
Expand Down

0 comments on commit 7cf34a5

Please sign in to comment.