feat: add Kusari Inspector workflow and security-insights entry

Signed-off-by: sonupreetam <spreetam@redhat.com>

Author: sonupreetam

.github/workflows/kusari-scan.yml

@@ -0,0 +1,19 @@
+name: Kusari Security Scan
+
+on:
+  pull_request:
+    branches:
+      - main
+
+jobs:
+  kusari-scan:
+    uses: kusaridev/kusari-ci-templates/.github/workflows/kusari-scan-v1.yml@v1
+    permissions:
+      contents: read
+      pull-requests: write # Required for PR comments
+    secrets:
+      KUSARI_CLIENT_ID: ${{ secrets.KUSARI_CLIENT_ID }}
+      KUSARI_CLIENT_SECRET: ${{ secrets.KUSARI_CLIENT_SECRET }}
+    with:
+      fail_on_issues: false
+      post_comment: true

security-insights.yml

@@ -70,3 +70,20 @@ repository:
           adhoc: true
           ci: true
           release: false
+      - name: Kusari Inspector
+        type: SCA
+        version: v1
+        rulesets:
+          - built-in
+        results:
+          ci:
+            name: CI SCA Results
+            predicate-uri: https://github.com/kusaridev/kusari-ci-templates/blob/main/.github/workflows/kusari-scan-v1.yml
+            location: https://github.com/gemaraproj/go-gemara/pulls
+            comment: |
+              Kusari Inspector analyzes pull requests for dependency and code security issues.
+              Results are posted as PR comments.
+        integration:
+          adhoc: false
+          ci: true
+          release: false