ci: wire org-wide security-scan + dependabot + CODEOWNERS #1

	# Copyright 2026 ResQ Software
	# SPDX-License-Identifier: Apache-2.0
	#
	# Thin caller for the org-wide reusable security-scan workflow in
	# resq-software/.github.

	name: security

	on:
	push:
	branches: [main, master]
	pull_request:
	schedule:
	- cron: '17 6 * * 1'
	workflow_dispatch:

	permissions:
	contents: read
	security-events: write
	pull-requests: read

	jobs:
	scan:
	uses: resq-software/.github/.github/workflows/security-scan.yml@main
Check failure on line 24 in .github/workflows/security.yml View workflow run for this annotation GitHub Actions / .github/workflows/security.yml Invalid workflow file `error parsing called workflow ".github/workflows/security.yml" -> "resq-software/.github/.github/workflows/security-scan.yml@main" (source branch with sha:ca9e97a310a39bd7ec42cd066bb80b33b5a31751) : (Line: 59, Col: 19): Unrecognized function: 'split'. Located at position 31 within expression: fromJSON(format('[{0}]', join(split(inputs.languages, ','), ','))), (Line: 59, Col: 19): Unexpected value '${{ fromJSON(format('[{0}]', join(split(inputs.languages, ','), ','))) }}'`
	with:
	languages: '["csharp","actions"]'
	secrets: inherit

Provide feedback