From 991be60a315ef3e025ce8464a6ef629c9d836ae4 Mon Sep 17 00:00:00 2001
From: Brian Muenzenmeyer <brian.muenzenmeyer@gmail.com>
Date: Fri, 13 Sep 2024 13:40:10 -0500
Subject: [PATCH] Adds scorecard annotations (#6979)

---
 .github/scorecard.yml | 8 ++++++++
 1 file changed, 8 insertions(+)
 create mode 100644 .github/scorecard.yml

diff --git a/.github/scorecard.yml b/.github/scorecard.yml
new file mode 100644
index 0000000000000..e461abd489a61
--- /dev/null
+++ b/.github/scorecard.yml
@@ -0,0 +1,8 @@
+# annotations tell scorecard that we have mitigated a concern. automation is only so good at establishing context
+# https://github.com/ossf/scorecard/blob/main/config/README.md#annotating-your-project
+annotations:
+  # our workflows only run when a maintainer allows it
+  - checks:
+      - dangerous-workflow
+    reasons:
+      - reason: remediated