diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 5290f21..dd049e4 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -35,3 +35,4 @@ jobs:
         uses: github/codeql-action/analyze@v3
         with:
           category: '/language:${{ matrix.language }}'
+          upload: ${{ github.event.repository.private == false }}
diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
index 7aadc28..7c5fe12 100644
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@@ -25,9 +25,10 @@ jobs:
       - name: Run analysis
         uses: ossf/scorecard-action@v2.4.0
         with:
+          repo_token: ${{ secrets.GITHUB_TOKEN }}
           results_file: results.sarif
           results_format: sarif
-          publish_results: true
+          publish_results: ${{ github.event.repository.private == false }}
 
       - name: Upload artifact
         uses: actions/upload-artifact@v4
@@ -37,6 +38,7 @@ jobs:
           retention-days: 5
 
       - name: Upload to code-scanning
+        if: github.event.repository.private == false
         uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: results.sarif