chore: run Salus scan on daily schedule

This ensures that Salus is detecting newly vulnerable packages, even if we haven't pushed new code.

Closes ENG-79

.github/workflows/salus.yaml

@@ -1,4 +1,7 @@
-on: [push]
+on:
+  push:
+  schedule:
+    - cron: '0 0 * * *'
 
 name: Salus security scan