Describe the bug

Scorecards fails to detect the way you publish a package and I think you guys should support the use case of Elixir programming language.

I'm opening this issue as suggested here: https://github.com/ossf/scorecard/blob/c40859202d739b31fd060ac5b30d17326cd74275/docs/checks.md#packaging

Reproduction steps
Steps to reproduce the behavior:

1. Go to https://api.securityscorecards.dev/projects/github.com/kommitters/stellar_sdk
2. Look at the "Packaging" check, it shows a -1 score

Expected behavior
Should show a 10 score as my repo has a GitHub Actions workflow that uploads the package to hex.pm (Elixir libraries hub).
Link to github actions file: https://github.com/kommitters/stellar_sdk/blob/main/.github/workflows/cd.yml

Additional context
Add any other context about the problem here.