From 59a1bff7c5b95328e9fdc68b513db8759a896c69 Mon Sep 17 00:00:00 2001
From: Brian Muenzenmeyer <brian.muenzenmeyer@gmail.com>
Date: Mon, 5 Aug 2024 10:48:55 -0500
Subject: [PATCH] Adds scorecard annotations

---
 .github/scorecard.yml | 8 ++++++++
 1 file changed, 8 insertions(+)
 create mode 100644 .github/scorecard.yml

diff --git a/.github/scorecard.yml b/.github/scorecard.yml
new file mode 100644
index 0000000000000..e461abd489a61
--- /dev/null
+++ b/.github/scorecard.yml
@@ -0,0 +1,8 @@
+# annotations tell scorecard that we have mitigated a concern. automation is only so good at establishing context
+# https://github.com/ossf/scorecard/blob/main/config/README.md#annotating-your-project
+annotations:
+  # our workflows only run when a maintainer allows it
+  - checks:
+      - dangerous-workflow
+    reasons:
+      - reason: remediated