[llvm] Add Scorecard Action (PR #69933)
Tom Stellard via llvm-commits
llvm-commits at lists.llvm.org
Tue Nov 7 08:37:53 PST 2023
================
@@ -0,0 +1,63 @@
+# This workflow uses actions that are not certified by GitHub. They are provided
+# by a third-party and are governed by separate terms of service, privacy
+# policy, and support documentation.
+
+# Check current LLVM-Project results here: https://securityscorecards.dev/viewer/?uri=github.com/llvm/llvm-project
+
+name: Scorecard supply-chain security
+on:
+ # For Branch-Protection check. Only the default branch is supported. See
+ # https://github.com/ossf/scorecard/blob/main/docs/checks.md#branch-protection
+ branch_protection_rule:
+ # To guarantee Maintained check is occasionally updated. See
+ # https://github.com/ossf/scorecard/blob/main/docs/checks.md#maintained
+ schedule:
+ - cron: '38 20 * * 4'
+ push:
+ branches: [ "main" ]
----------------
tstellar wrote:
Ok, I switched the job to run once per day in 67a53ae73b6752d37979f53aa27b7bd193767468.
https://github.com/llvm/llvm-project/pull/69933
More information about the llvm-commits
mailing list