Thanks for the report. I suppose we haven’t run into this issue before because we generally this isn’t done:
Disable “Execute Analysis” permission for “Anonymous” members
Am I right to assume you doing this specifically to allow analyses to happen from forked repos without sharing a secret?
I do think this is odd behavior we should look into – and, a user recently shared a workaround for analyzing forked repos with GitHub Actions. Maybe you could give it a try and see if it works just as well for you?