Skip to content

Commit aaae441

Browse files
Patel230claude
andcommitted
fix(ci): disable scorecard publish_results (was 400ing on webapp)
Scorecard analysis runs fine (score 7.0) but publish_results=true POSTs to the OpenSSF webapp, which rejects the top-level security-events:write perm (workflow-restrictions). Set publish_results=false; SARIF still uploads to GitHub code-scanning. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
1 parent 25c8059 commit aaae441

1 file changed

Lines changed: 1 addition & 1 deletion

File tree

.github/workflows/scorecard.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -27,7 +27,7 @@ jobs:
2727
with:
2828
results_file: scorecard-results.sarif
2929
results_format: sarif
30-
publish_results: true
30+
publish_results: false
3131

3232
- name: Upload artifact
3333
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1

0 commit comments

Comments
 (0)