remove commenting, add security badge

Author: bckohan

.github/workflows/zizmor.yml

@@ -1,4 +1,4 @@
-name: Zizmor GitHub Actions Security Analysis
+name: Zizmor
 
 on:
   push:
@@ -15,7 +15,7 @@ permissions:
 
 jobs:
   zizmor-analysis:
-    name: Zizmor Analysis
+    name: Run Zizmor
     runs-on: ubuntu-latest
     permissions:
       contents: read
@@ -53,15 +53,3 @@ jobs:
         uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: results.sarif
-
-      - name: Post SARIF findings in the pull request
-        if: github.event_name == 'pull_request'
-        uses: sett-and-hive/[email protected]
-        with:
-          token: ${{ secrets.GITHUB_TOKEN }}
-          repository: ${{ github.repository }}
-          branch: ${{ github.head_ref }}
-          pr-number: ${{ github.event.number }}
-          sarif-file: results.sarif
-          title: Zizmor Findings
-          dry-run: false

SECURITY.md

@@ -1,6 +1,7 @@
 # Security Policy
 
 [![CodeQL](https://github.com/django-commons/django-typer/actions/workflows/github-code-scanning/codeql/badge.svg?branch=main)](https://github.com/django-commons/django-typer/actions/workflows/github-code-scanning/codeql?query=branch:main)
+[![Zizmor](https://github.com/django-commons/django-typer/actions/workflows/zizmor.yml/badge.svg?branch=main)](https://woodruffw.github.io/zizmor)
 [![OpenSSF Scorecard](https://api.securityscorecards.dev/projects/github.com/django-commons/django-typer/badge)](https://securityscorecards.dev/viewer/?uri=github.com/django-commons/django-typer)
 
 ## Supported Versions