Add test workflow for PRs.

Author: BigBlueHat

.github/workflows/test-pr.yaml

@@ -0,0 +1,28 @@
+# OSV-Scanner PR scanning reusable workflow, can be used as a PR action to
+# detect new vulnerabilities being introduced.
+name: Use OSV to do SCA on main (daily) and PRs
+
+on:
+  pull_request:
+    branches: [main]
+  merge_group:
+    branches: [main]
+  schedule:
+    - cron: 0 0 * * *
+  push:
+    branches: [main]
+
+jobs:
+  ## run the following on PRs
+  osv-scan-pr:
+    uses: digitalbazaar/github-workflow-shared-action-osv-scanner/.github/workflows/osv-scanner-pr.yaml@64442e54b86273b20da4a1f4bf2744b43f2e7e02
+    permissions:
+      contents: read
+      pull-requests: write
+
+  ## run the following only on the main branch
+  osv-scan-main:
+    uses: digitalbazaar/github-workflow-shared-action-osv-scanner/.github/workflows/osv-scanner-main.yaml@64442e54b86273b20da4a1f4bf2744b43f2e7e02
+    permissions:
+      contents: read
+      issues: write