chore: add security scan GHA workflow #8

	name: Security Scan
	on:
	pull_request:
	types: [opened, synchronize, reopened]

	jobs:
	security-scan:
Check failure on line 7 in .github/workflows/security-scan.yml View workflow run for this annotation GitHub Actions / Security Scan Invalid workflow file The workflow is not valid. .github/workflows/security-scan.yml (Line: 7, Col: 3): Error calling workflow 'codeforamerica/github-actions/.github/workflows/security-scan.yml@rd/security-scan'. The nested job 'grype-scan' is requesting 'security-events: write', but is only allowed 'security-events: none'. .github/workflows/security-scan.yml (Line: 7, Col: 3): Error calling workflow 'codeforamerica/github-actions/.github/workflows/security-scan.yml@rd/security-scan'. The nested job 'trivy-scan' is requesting 'security-events: write', but is only allowed 'security-events: none'.
	uses: codeforamerica/github-actions/.github/workflows/security-scan.yml@rd/security-scan
	permissions:
	contents: read
	pull-requests: write
	with:
	path: "./"

Provide feedback