From c5aac3c2eac4e8bd6f703fddddb7c945c17ba656 Mon Sep 17 00:00:00 2001
From: Billy Tat <btat@suse.com>
Date: Fri, 16 Jan 2026 13:10:12 -0800
Subject: [PATCH] Revert "Add FOSSA scanning workflow"

---
 .github/workflows/fossa.yml | 34 ----------------------------------
 1 file changed, 34 deletions(-)
 delete mode 100644 .github/workflows/fossa.yml

diff --git a/.github/workflows/fossa.yml b/.github/workflows/fossa.yml
deleted file mode 100644
index a56851826c8..00000000000
--- a/.github/workflows/fossa.yml
+++ /dev/null
@@ -1,34 +0,0 @@
-name: FOSSA Scanning
-
-on:
-  push:
-    branches: ["main", "master", "release/**"]
-  workflow_dispatch:
-
-permissions:
-  contents: read
-  id-token: write
-
-jobs:
-  fossa-scanning:
-    runs-on: ubuntu-latest
-    timeout-minutes: 30
-    steps:
-    - name: Checkout
-      uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6
-
-    # The FOSSA token is shared between all repos in Rancher's GH org. It can be
-    # used directly and there is no need to request specific access to EIO.
-    - name: Read FOSSA token
-      uses: rancher-eio/read-vault-secrets@main
-      with:
-        secrets: |
-          secret/data/github/org/rancher/fossa/push token | FOSSA_API_KEY_PUSH_ONLY
-
-    - name: FOSSA scan
-      uses: fossas/fossa-action@main
-      with:
-        api-key: ${{ env.FOSSA_API_KEY_PUSH_ONLY }}
-        # Only runs the scan and do not provide/returns any results back to the
-        # pipeline.
-        run-tests: false