Skip to content

Commit ca5bbf6

Browse files
authored
Update scorecard.yml
Signed-off-by: James Pether Sörling <pethers@users.noreply.github.com>
1 parent b07f513 commit ca5bbf6

1 file changed

Lines changed: 3 additions & 11 deletions

File tree

.github/workflows/scorecard.yml

Lines changed: 3 additions & 11 deletions
Original file line numberDiff line numberDiff line change
@@ -12,9 +12,6 @@ on:
1212
# Declare default permissions as read only.
1313
permissions: read-all
1414

15-
env:
16-
FORCE_JAVASCRIPT_ACTIONS_TO_NODE24: true
17-
1815
jobs:
1916
analysis:
2017
name: Scorecard analysis
@@ -25,22 +22,17 @@ jobs:
2522
# Needed to publish results and get a badge (see publish_results below).
2623
id-token: write
2724
# Uncomment the permissions below if installing in a private repository.
28-
# contents: read
29-
# actions: read
25+
contents: read
26+
actions: read
3027

3128
steps:
32-
- name: Harden Runner
33-
uses: step-security/harden-runner@bf7454d06d71f1098171f2acdf0cd4708d7b5920 # v2.20.0
34-
with:
35-
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
36-
3729
- name: "Checkout code"
3830
uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
3931
with:
4032
persist-credentials: false
4133

4234
- name: "Run analysis"
43-
uses: ossf/scorecard-action@4eaacf0543bb3f2c246792bd56e8cdeffafb205a # v2.4.3
35+
uses: ossf/scorecard-action@latest
4436
with:
4537
results_file: results.sarif
4638
results_format: sarif

0 commit comments

Comments
 (0)