feat: implemented github actions

[miguelcsx]

• includes pull request template
• adds ci/cd action for PR and code quality

[github-actions[bot]]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
actions/actions/checkout	4.*.*	:green_circle: 6.9	Details Check Score Reason Code-Review :green_circle: 10 all changesets reviewed Maintained :green_circle: 5 6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Binary-Artifacts :green_circle: 10 no binaries found in the repo Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Fuzzing :warning: 0 project is not fuzzed Pinned-Dependencies :green_circle: 4 dependency not pinned by hash detected -- score normalized to 4 Security-Policy :green_circle: 9 security policy file detected Packaging :green_circle: 10 packaging workflow detected SAST :green_circle: 9 SAST tool detected but not run on all commits Vulnerabilities :green_circle: 8 2 existing vulnerabilities detected
actions/github/codeql-action/analyze	3.*.*	Unknown	Unknown
actions/github/codeql-action/init	3.*.*	Unknown	Unknown
actions/actions/checkout	4.*.*	:green_circle: 6.9	Details Check Score Reason Code-Review :green_circle: 10 all changesets reviewed Maintained :green_circle: 5 6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Binary-Artifacts :green_circle: 10 no binaries found in the repo Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Fuzzing :warning: 0 project is not fuzzed Pinned-Dependencies :green_circle: 4 dependency not pinned by hash detected -- score normalized to 4 Security-Policy :green_circle: 9 security policy file detected Packaging :green_circle: 10 packaging workflow detected SAST :green_circle: 9 SAST tool detected but not run on all commits Vulnerabilities :green_circle: 8 2 existing vulnerabilities detected
actions/actions/dependency-review-action	4.*.*	:green_circle: 7.1	Details Check Score Reason Code-Review :green_circle: 10 all changesets reviewed Maintained :green_circle: 10 30 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Security-Policy :green_circle: 9 security policy file detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies :warning: 1 dependency not pinned by hash detected -- score normalized to 1 Fuzzing :warning: 0 project is not fuzzed SAST :green_circle: 9 SAST tool detected but not run on all commits Vulnerabilities :green_circle: 9 1 existing vulnerabilities detected
actions/actions/checkout	3.*.*	:green_circle: 6.9	Details Check Score Reason Code-Review :green_circle: 10 all changesets reviewed Maintained :green_circle: 5 6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Binary-Artifacts :green_circle: 10 no binaries found in the repo Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Fuzzing :warning: 0 project is not fuzzed Pinned-Dependencies :green_circle: 4 dependency not pinned by hash detected -- score normalized to 4 Security-Policy :green_circle: 9 security policy file detected Packaging :green_circle: 10 packaging workflow detected SAST :green_circle: 9 SAST tool detected but not run on all commits Vulnerabilities :green_circle: 8 2 existing vulnerabilities detected
actions/actions/github-script	6.*.*	:green_circle: 5.9	Details Check Score Reason Code-Review :green_circle: 10 all changesets reviewed Maintained :warning: 2 3 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 2 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies :warning: 1 dependency not pinned by hash detected -- score normalized to 1 Fuzzing :warning: 0 project is not fuzzed Security-Policy :green_circle: 9 security policy file detected SAST :green_circle: 10 SAST tool is run on all commits Vulnerabilities :green_circle: 5 5 existing vulnerabilities detected
actions/ytanikin/PRConventionalCommits	1.1.0	Unknown	Unknown

Scanned Manifest Files

.github/workflows/codeql.yml

• actions/checkout@4.*.*
• github/codeql-action/analyze@3.*.*
• github/codeql-action/init@3.*.*

.github/workflows/dependency-review.yml

• actions/checkout@4.*.*
• actions/dependency-review-action@4.*.*

.github/workflows/pr-checklist.yml

• actions/checkout@3.*.*
• actions/github-script@6.*.*

.github/workflows/pr-conventional-commits.yml

• ytanikin/PRConventionalCommits@1.1.0