Skip to content

OpenSSF Scorecard Monitor #93

OpenSSF Scorecard Monitor

OpenSSF Scorecard Monitor #93

name: "OpenSSF Scorecard Monitor"
on:
push:
paths:
- .github/workflows/openssf-scorecard-monitor.yml
schedule:
- cron: "0 0 * * 1"
workflow_dispatch:
permissions:
contents: read
jobs:
security-scoring:
runs-on: ubuntu-latest
permissions:
# Write access in order to update the local files with the reports
contents: write
# Write access in order to create issues
issues: write
steps:
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
- name: OpenSSF Scorecard Monitor
uses: UlisesGascon/[email protected]
with:
scope: ossf-reporting/scope.json
database: ossf-reporting/database.json
report: ossf-reporting/openssf-scorecard-report.md
auto-commit: true
auto-push: true
generate-issue: true
# The token is needed to create issues, discovery mode and pushing changes in files
github-token: ${{ secrets.GITHUB_TOKEN }}
discovery-enabled: true
discovery-orgs: devops-actions