Security Scanning #13

	name: Security Scanning

	on:
	push:
	branches: [ main ]
	pull_request:
	branches: [ main ]
	schedule:
	- cron: '0 6 * * 1' # Weekly on Monday at 6am UTC

	jobs:
	secret-scan:
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@v4
	with:
	fetch-depth: 0

	- name: TruffleHog secret scan
	uses: trufflesecurity/trufflehog@main
	with:
	extra_args: --only-verified

	dependency-review:
	runs-on: ubuntu-latest
	if: github.event_name == 'pull_request'
	steps:
	- uses: actions/checkout@v4

	- name: Dependency Review
	uses: actions/dependency-review-action@v4

Provide feedback