chore: add security toolchain config (deny/clippy/rustfmt/audit/ci) #1

	name: Sec Audit

	on:
	push:
	branches: [main]
	paths:
	- "Cargo.toml"
	- "Cargo.lock"
	- "deny.toml"
	- '.cargo/audit.toml'
	pull_request:
	branches: [main]
	paths:
	- "Cargo.toml"
	- "Cargo.lock"
	- "deny.toml"
	- '.cargo/audit.toml'
	schedule:
	- cron: "0 6 * * 1"

	concurrency:
	group: security-${{ github.event.pull_request.number \|\| github.ref }}
	cancel-in-progress: true

	permissions:
	contents: read
	issues: write

	env:
	CARGO_TERM_COLOR: always

	jobs:
	audit:
	name: Security Audit
	runs-on: ubuntu-latest
	timeout-minutes: 35
	steps:
	- uses: actions/checkout@v4
	- uses: rustsec/audit-check@v2.0.0
	with:
	token: ${{ secrets.GITHUB_TOKEN }}

	deny:
	name: License & Supply Chain
	runs-on: ubuntu-latest
	timeout-minutes: 35
	strategy:
	matrix:
	checks:
	- advisories
	- bans licenses sources
	continue-on-error: ${{ matrix.checks == 'advisories' }}
	steps:
	- uses: actions/checkout@v4
	- uses: EmbarkStudios/cargo-deny-action@v2
	with:
	command: check ${{ matrix.checks }}
	arguments: --all-features

Provide feedback