Add repository scan

Author: BernieWhite

.github/workflows/repo.yaml

@@ -0,0 +1,46 @@
+#
+# Repository configuration analysis
+#
+
+# NOTES:
+# This workflow uses PSRule.
+# You can read more about these linting tools and configuration options here:
+#   PSRule - https://aka.ms/ps-rule and https://github.com/Microsoft/PSRule.Rules.GitHub
+
+name: Repository
+on:
+  push:
+    branches: [ main, 'release/*' ]
+  pull_request:
+    branches: [ main, 'release/*' ]
+  schedule:
+  - cron: '24 22 * * 0' # At 10:24 PM, on Sunday each week
+  workflow_dispatch:
+
+jobs:
+  repo:
+    name: Repository configuration
+    runs-on: ubuntu-latest
+    # if: github.repository == 'microsoft/PSRule'
+    permissions:
+      contents: read
+      security-events: write
+    steps:
+
+    - name: Checkout
+      uses: actions/checkout@v3
+
+    - name: Run PSRule analysis
+      uses: Microsoft/[email protected]
+      with:
+        modules: PSRule.Rules.GitHub
+        outputFormat: Sarif
+        outputPath: reports/ps-rule-results.sarif
+      env:
+        GITHUB_REPOSITORY: ${{ github.repository }}
+        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+    - name: Upload results to security tab
+      uses: github/codeql-action/upload-sarif@v1
+      with:
+        sarif_file: reports/ps-rule-results.sarif