Add ossf/scorecard-action badge to readme

commit: ee1bfe66cf0c8a738672aa4567040531e1d65367 [log] [tgz]
author: Gary Gregory <garydgregory@gmail.com> Wed Sep 14 11:11:28 2022 -0400
committer: Gary Gregory <garydgregory@gmail.com> Wed Sep 14 11:11:28 2022 -0400
tree: a51dd25f751ef0230e7a6a2be76476c7e0ad43bb
parent: c1b6d500c56af943ed26d69d48dcd624367b0a28 [diff]
diff --git a/README.md b/README.md
index 6288aa4..ea89cd3 100644
--- a/README.md
+++ b/README.md

@@ -48,6 +48,7 @@
 [![Maven Central](https://maven-badges.herokuapp.com/maven-central/commons-dbutils/commons-dbutils/badge.svg?gav=true)](https://maven-badges.herokuapp.com/maven-central/commons-dbutils/commons-dbutils/?gav=true)
 [![Javadocs](https://javadoc.io/badge/commons-dbutils/commons-dbutils/1.8.svg)](https://javadoc.io/doc/commons-dbutils/commons-dbutils/1.8)
 [![CodeQL](https://github.com/apache/commons-dbutils/workflows/CodeQL/badge.svg)](https://github.com/apache/commons-dbutils/actions/workflows/codeql-analysis.yml?query=workflow%3ACodeQL)
+[![OpenSSF Scorecard](https://api.securityscorecards.dev/projects/github.com/apache/commons-dbutils/badge)](https://api.securityscorecards.dev/projects/github.com/apache/commons-dbutils)
 
 The Apache Commons DbUtils package is a set of Java utility classes for easing JDBC development.
commit	ee1bfe66cf0c8a738672aa4567040531e1d65367	[log] [tgz]
author	Gary Gregory <garydgregory@gmail.com>	Wed Sep 14 11:11:28 2022 -0400
committer	Gary Gregory <garydgregory@gmail.com>	Wed Sep 14 11:11:28 2022 -0400
tree	a51dd25f751ef0230e7a6a2be76476c7e0ad43bb
parent	c1b6d500c56af943ed26d69d48dcd624367b0a28 [diff]