From db5784c78fcedbd7d7e9b6188309ab0d8fe328a0 Mon Sep 17 00:00:00 2001
From: Raffael Comi <GitHub@DiComo.de>
Date: Tue, 31 Oct 2023 23:05:56 +0100
Subject: [PATCH] Renovate: Inline OpenSSF Scorecard preset

to modify it
---
 .github/renovate.json | 19 ++++++++++++++-----
 1 file changed, 14 insertions(+), 5 deletions(-)

diff --git a/.github/renovate.json b/.github/renovate.json
index 5b83674..1c66438 100644
--- a/.github/renovate.json
+++ b/.github/renovate.json
@@ -11,12 +11,20 @@
     ":timezone(Europe/Berlin)",
     "group:allNonMajor",
     "npm:unpublishSafe",
-    "schedule:yearly",
-    "security:openssf-scorecard"
+    "schedule:yearly"
   ],
   "osvVulnerabilityAlerts": true,
   "postUpdateOptions": ["npmDedupe"],
-  "prBodyColumns": [
+  "transitiveRemediation": true,
+  "packageRules": [
+    {
+      "matchSourceUrlPrefixes": [
+        "https://github.com/"
+      ],
+      "prBodyDefinitions": {
+        "OpenSSF": "[![OpenSSF Scorecard](https://api.securityscorecards.dev/projects/github.com/{{sourceRepo}}/badge)](https://securityscorecards.dev/viewer/?uri=github.com/{{sourceRepo}})"
+      },
+      "prBodyColumns": [
         "Package",
         "Change",
         "Age",
@@ -24,6 +32,7 @@
         "Passing",
         "Confidence",
         "OpenSSF"
-  ],
-  "transitiveRemediation": true
+      ]
+    }
+  ]
 }