SEC-1742: Plume Infosec - Secret Scanning

Issue: Enable secret detection on pull requests to default branch
Signed-off-by: Alan Gonzalez <[email protected]>

.github/workflows/repo-compliance-scan.yml

@@ -0,0 +1,13 @@
+name: Infosec Compliance
+
+on:
+  workflow_dispatch:
+  pull_request:
+    branches: [ $default-branch ]
+
+jobs:
+  scan:
+    name: Code scan
+    uses: plume-design-inc/infosec-appsec/.github/workflows/compliance-scan.yml@main
+    secrets:
+      SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}