Bump ossf/scorecard-action from 2.3.3 to 2.4.0 #245

	name: Code Review
	on:
	pull_request:
	permissions:
	contents: read
	jobs:
	code-review:
	runs-on: ubuntu-latest
	permissions:
	contents: read
	pull-requests: read
	steps:
	- name: Harden Runner
	uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
	with:
	disable-sudo: true
	egress-policy: block
	allowed-endpoints: >
	api.github.com:443
	int.api.stepsecurity.io:443

	- name: Code Review
	uses: step-security/ai-codewise@int

Provide feedback