Blog: add v25.0.0 Release (#8230) #1641

	name: OpenSSF Scorecard Review
	on:
	# For Branch-Protection check. Only the default branch is supported. See
	# https://github.com/ossf/scorecard/blob/main/docs/checks.md#branch-protection
	branch_protection_rule:
	# To guarantee that the Maintained check is occasionally updated. See
	# https://github.com/ossf/scorecard/blob/main/docs/checks.md#maintained
	schedule:
	- cron: '20 7 * * 2'
	push:
	branches:
	- main

	# Declare default permissions as read only.
	permissions: read-all

	jobs:
	analysis:
Check failure on line 18 in .github/workflows/scorecard.yml View workflow run for this annotation GitHub Actions / OpenSSF Scorecard Review Invalid workflow file The workflow is not valid. .github/workflows/scorecard.yml (Line: 18, Col: 3): Error calling workflow 'nodejs/web-team/.github/workflows/scorecard.yml@2c2897a93eb99b4cdca270729100bc0887c758d9'. The workflow is requesting 'attestations: read, checks: read, deployments: read, discussions: read, issues: read, models: read, packages: read, pages: read, pull-requests: read, repository-projects: read, statuses: read', but is only allowed 'attestations: none, checks: none, deployments: none, discussions: none, issues: none, mode[...]
	name: Scorecard analysis
	uses: nodejs/web-team/.github/workflows/scorecard.yml@2c2897a93eb99b4cdca270729100bc0887c758d9
	permissions:
	# Needed to upload the results to code-scanning dashboard.
	security-events: write
	# Needed to publish results and get a badge (see publish_results below).
	id-token: write
	contents: read
	actions: read

Provide feedback