Look for maintainer annotation config files in multiple locations: scorecard.yml, .scorecard.yml, .github/scorecard.yml. Scorecard uses the first one it finds regardless of whether it's valid.
What is the current behavior?
Only look for scorecard.yml and don't apply maintainer annotation if that file doesn't exist.
[x] Tests for the changes have been added (for bug fixes/features)
What kind of change does this PR introduce?
Look for maintainer annotation config files in multiple locations:
scorecard.yml,.scorecard.yml,.github/scorecard.yml. Scorecard uses the first one it finds regardless of whether it's valid.What is the current behavior?
Only look for
scorecard.ymland don't apply maintainer annotation if that file doesn't exist.Which issue(s) this PR fixes
Addresses #4048