diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
index 4c80298f..78daa0fa 100644
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@@ -28,10 +28,6 @@ jobs:
         with:
           results_file: results.sarif
           results_format: sarif
-          # Read-only PAT (Administration: read) so Scorecard can evaluate the
-          # Branch-Protection check, which the default GITHUB_TOKEN cannot read.
-          # Falls back gracefully (check stays inconclusive) if the secret is unset.
-          repo_token: ${{ secrets.SCORECARD_TOKEN }}
           publish_results: true
       - name: Upload artifact
         uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2